Vulnerability Details CVE-2020-25218
Grandstream GRP261x VoIP phone running firmware version 1.0.3.6 (Base) allow Authentication Bypass in its administrative web interface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.3%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2020-25218
-
cpe:2.3:h:grandstream:grp2612:-
-
cpe:2.3:h:grandstream:grp2612p:-
-
cpe:2.3:h:grandstream:grp2612w:-
-
cpe:2.3:h:grandstream:grp2613:-
-
cpe:2.3:h:grandstream:grp2614:-
-
cpe:2.3:h:grandstream:grp2615:-
-
cpe:2.3:h:grandstream:grp2616:-
-
cpe:2.3:o:grandstream:grp2612_firmware:1.0.3.6
-
cpe:2.3:o:grandstream:grp2612p_firmware:1.0.3.6
-
cpe:2.3:o:grandstream:grp2612w_firmware:1.0.3.6
-
cpe:2.3:o:grandstream:grp2613_firmware:1.0.3.6
-
cpe:2.3:o:grandstream:grp2614_firmware:1.0.3.6
-
cpe:2.3:o:grandstream:grp2615_firmware:1.0.3.6
-
cpe:2.3:o:grandstream:grp2616_firmware:1.0.3.6