Grandstream: >> Gxv3611ir Hd Firmware >> 1.0.3.9 Security Vulnerabilities
Grandstream GXV3611IR_HD before 1.0.3.23 devices allow remote authenticated users to execute arbitrary code via shell metacharacters in the /goform/systemlog?cmd=set logserver field.
CVSS Score
8.8
EPSS Score
0.025
Published
2019-03-30
On Grandstream GXV3611IR_HD before 1.0.3.23 devices, the root account lacks a password.
CVSS Score
9.8
EPSS Score
0.004
Published
2019-03-30