CVE-2021-37915

Опубликовано: 28 окт. 2021

Источник: nvd

CVSS3: 8.8

CVSS2: 9

EPSS Низкий

Описание

An issue was discovered on the Grandstream HT801 Analog Telephone Adaptor before 1.0.29.8. From the limited configuration shell, it is possible to set the malicious gdb_debug_server variable. As a result, after a reboot, the device downloads and executes malicious scripts from an attacker-defined host.

Ссылки

http://firmware.grandstream.com/BETA/Release_Note_HT80x_1.0.29.8.pdf
Broken Link
http://www.grandstream.com/products/gateways-and-atas/analog-telephone-adaptors/product/ht801
Product
Vendor Advisory
https://www.secforce.com/blog/exploiting-grandstream-ht801-ata-cve-2021-37748-cve-2021-37915/
Exploit
Third Party Advisory
http://firmware.grandstream.com/BETA/Release_Note_HT80x_1.0.29.8.pdf
Broken Link
http://www.grandstream.com/products/gateways-and-atas/analog-telephone-adaptors/product/ht801
Product
Vendor Advisory
https://www.secforce.com/blog/exploiting-grandstream-ht801-ata-cve-2021-37748-cve-2021-37915/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:grandstream:ht801_firmware:*:*:*:*:*:*:*:*

Версия до 1.0.29.8 (исключая)

cpe:2.3:h:grandstream:ht801:-:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00794

Низкий

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-mfhv-6c62-c8w2

github

больше 3 лет назад