Grandstream Ht802 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Grandstream Ht802 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2020-5763 — CVSS 8.8 (high): Grandstream HT800 series firmware version 1.0.17.5 and below contain a backdoor in the SSH service. An authenticated remote attacker can…
CVE-2017-16565 — CVSS 8.8 (high): Cross-Site Request Forgery (CSRF) in /cgi-bin/login on Vonage (Grandstream) HT802 devices allows attackers to authenticate a user via the…
CVE-2017-16563 — CVSS 8.0 (high): Cross-Site Request Forgery (CSRF) in the Basic Settings screen on Vonage (Grandstream) HT802 devices allows attackers to modify settings…
CVE-2020-5760 — CVSS 7.8 (high): Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote…
CVE-2020-5761 — CVSS 7.5 (high): Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to CPU exhaustion due to an infinite loop in the TR-069 service…
CVE-2020-5762 — CVSS 7.5 (high): Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to a denial of service attack against the TR-069 service. An…