Skip to main content

Gxv3611Ir Hd Firmware

2 CVEs product

Monthly

CVE-2019-10661 CRITICAL POC Act Now

On Grandstream GXV3611IR_HD before 1.0.3.23 devices, the root account lacks a password. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Gxv3611Ir Hd Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
CVE-2019-10660 HIGH POC This Week

Grandstream GXV3611IR_HD before 1.0.3.23 devices allow remote authenticated users to execute arbitrary code via shell metacharacters in the /goform/systemlog?cmd=set logserver field. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Gxv3611Ir Hd Firmware
NVD GitHub
CVSS 3.1
8.8
EPSS
2.7%
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

On Grandstream GXV3611IR_HD before 1.0.3.23 devices, the root account lacks a password. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Gxv3611Ir Hd Firmware
NVD GitHub
EPSS 3% CVSS 8.8
HIGH POC This Week

Grandstream GXV3611IR_HD before 1.0.3.23 devices allow remote authenticated users to execute arbitrary code via shell metacharacters in the /goform/systemlog?cmd=set logserver field. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Gxv3611Ir Hd Firmware
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy