CVE-2020-5763

Summary

Grandstream HT800 series firmware version 1.0.17.5 and below contain a backdoor in the SSH service. An authenticated remote attacker can obtain a root shell by correctly answering a challenge prompt.

Affected Software

VendorProductVersion RangeStatus
n/aGrandstream HT800 SeriesVersions 1.0.17.5 and belowaffected

Weaknesses

  • CWE-489: CWE-489

ADP Enrichment

CVE Program Container

Additional References

References