PT-2022-14836 · Grandstream · Grandstream Gsd3710

Published

2022-09-23

Updated

2022-09-27

CVE-2022-2070

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Grandstream GSD3710 version 1.0.11.13

Description The issue allows for a stack overflow due to the lack of parameter length checking before using the sscanf instruction. This enables an attacker to create a socket, connect to a remote IP and port, open a shell, and gain full access to the system. The exploit affects the dbmng and logsrv daemons, which run on ports 8000 and 8001 by default.

Recommendations For Grandstream GSD3710 version 1.0.11.13, consider disabling the dbmng and logsrv daemons until a patch is available to prevent exploitation. Restrict access to ports 8000 and 8001 to minimize the risk of unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-121

Related Identifiers

CVE-2022-2070

Affected Products

Grandstream Gsd3710

PT-2022-14836 · Grandstream · Grandstream Gsd3710

CVE-2022-2070

Weakness Enumeration

Related Identifiers

Affected Products

References · 6