exploitDog

GHSA-7wqx-pvjm-73q6

Опубликовано: 29 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.6

Описание

Grandstream Networks GXP1628 <=1.0.4.130 is vulnerable to Incorrect Access Control. The device is configured with directory listing enabled, allowing unauthorized access to sensitive directories and files.

Grandstream Networks GXP1628 <=1.0.4.130 is vulnerable to Incorrect Access Control. The device is configured with directory listing enabled, allowing unauthorized access to sensitive directories and files.

Ссылки

EPSS

Процентиль: 23%

0.00076

Низкий

7.6 High

CVSS3

CVE ID

Дефекты

CWE-548

Связанные уязвимости

CVE-2025-28170

CVSS3: 7.6

nvd

6 месяцев назад

Grandstream Networks GXP1628 <=1.0.4.130 is vulnerable to Incorrect Access Control. The device is configured with directory listing enabled, allowing unauthorized access to sensitive directories and files.

EPSS

Процентиль: 23%

0.00076

Низкий

7.6 High

CVSS3

CVE ID

Дефекты

CWE-548