CVE-2020-5756
N/A
N/A
Summary
Grandstream GWN7000 firmware version 1.0.9.4 and below allows authenticated remote users to modify the system's crontab via undocumented API. An attacker can use this functionality to execute arbitrary OS commands on the router.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Tenable | Grandstream GWN7000 | Versions 1.0.9.4 and below | affected |
Weaknesses
- CWE-489: CWE-489
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.