Vulnerability Description
Grandstream UCM6200 series firmware version 1.0.20.23 and below is vulnerable to OS command injection via HTTP. An authenticated remote attacker can bypass command injection mitigations and execute commands as the root user by sending a crafted HTTP POST to the UCM's "New" HTTPS API.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Grandstream | Ucm6202 Firmware | <= 1.0.20.23 |
| Grandstream | Ucm6202 | - |
| Grandstream | Ucm6204 Firmware | <= 1.0.20.23 |
| Grandstream | Ucm6204 | - |
| Grandstream | Ucm6208 Firmware | <= 1.0.20.23 |
| Grandstream | Ucm6208 | - |
Related Weaknesses (CWE)
References
- https://www.tenable.com/security/research/tra-2020-42Not Applicable
- https://www.tenable.com/cve/CVE-2020-5757Third Party Advisory
- https://www.tenable.com/security/research/tra-2020-42Not Applicable
FAQ
What is CVE-2020-5757?
CVE-2020-5757 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Grandstream UCM6200 series firmware version 1.0.20.23 and below is vulnerable to OS command injection via HTTP. An authenticated remote attacker can bypass command injection mitigations and execute co...
How severe is CVE-2020-5757?
CVE-2020-5757 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2020-5757?
Check the references section above for vendor advisories and patch information. Affected products include: Grandstream Ucm6202 Firmware, Grandstream Ucm6202, Grandstream Ucm6204 Firmware, Grandstream Ucm6204, Grandstream Ucm6208 Firmware.