PT-2020-18661 · Grandstream · Grandstream Gxp1600

Published

2020-04-14

Updated

2020-04-14

CVE-2020-5739

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Grandstream GXP1600 series firmware versions 1.0.4.152 and below

Description The issue allows for authenticated remote command execution. An attacker can add an OpenVPN up script to the phone's VPN settings via the "Additional Settings" field in the web interface. When the VPN's connection is established, the user-defined script is executed with root privileges.

Recommendations For Grandstream GXP1600 series firmware versions 1.0.4.152 and below, consider disabling the OpenVPN up script feature in the web interface until a patch is available. Restrict access to the "Additional Settings" field to minimize the risk of exploitation.

Exploit

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2020-5739

Affected Products

Grandstream Gxp1600

PT-2020-18661 · Grandstream · Grandstream Gxp1600

CVE-2020-5739

Weakness Enumeration

Related Identifiers

Affected Products

References · 4