Every CVE whose affected-product data names Grandstream Wave, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2016-1518 — CVSS 8.1 (high): The auto-provisioning mechanism in the Grandstream Wave app 1.0.1.26 and earlier for Android and Grandstream Video IP phones allows…
CVE-2016-1520 — CVSS 7.8 (high): The Grandstream Wave app 1.0.1.26 and earlier for Android does not use HTTPS when retrieving update information, which might allow…
CVE-2016-1519 — CVSS 5.9 (medium): The com.softphone.common package in the Grandstream Wave app 1.0.1.26 and earlier for Android does not properly validate SSL certificates…