Vulnerability Description
The Grandstream UCM6200 series before 1.0.20.22 is vulnerable to an SQL injection via the HTTP server's websockify endpoint. A remote unauthenticated attacker can invoke the login action with a crafted username and, through the use of timing attacks, can discover user passwords.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Grandstream | Ucm6202 Firmware | < 1.0.20.22 |
| Grandstream | Ucm6202 | - |
| Grandstream | Ucm6204 Firmware | < 1.0.20.22 |
| Grandstream | Ucm6204 | - |
| Grandstream | Ucm6208 Firmware | < 1.0.20.22 |
| Grandstream | Ucm6208 | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/156976/Grandstream-UCM6200-Series-WebSocket
- https://www.tenable.com/security/research/tra-2020-17ExploitThird Party Advisory
- http://packetstormsecurity.com/files/156976/Grandstream-UCM6200-Series-WebSocket
- https://www.tenable.com/security/research/tra-2020-17ExploitThird Party Advisory
FAQ
What is CVE-2020-5725?
CVE-2020-5725 is a vulnerability with a CVSS score of 5.9 (MEDIUM). The Grandstream UCM6200 series before 1.0.20.22 is vulnerable to an SQL injection via the HTTP server's websockify endpoint. A remote unauthenticated attacker can invoke the login action with a crafte...
How severe is CVE-2020-5725?
CVE-2020-5725 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-5725?
Check the references section above for vendor advisories and patch information. Affected products include: Grandstream Ucm6202 Firmware, Grandstream Ucm6202, Grandstream Ucm6204 Firmware, Grandstream Ucm6204, Grandstream Ucm6208 Firmware.