Vulnerabilities > Grandstream > Gds3710 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-09-23 CVE-2022-2070 Out-of-bounds Write vulnerability in Grandstream Gds3710 Firmware 1.0.11.13
In Grandstream GSD3710 in its 1.0.11.13 version, it's possible to overflow the stack since it doesn't check the param length before using the sscanf instruction.
network
low complexity
grandstream CWE-787
critical
 9.8
9.8
2022-09-23 CVE-2022-2025 Out-of-bounds Write vulnerability in Grandstream Gds3710 Firmware 1.0.11.13
an attacker with knowledge of user/pass of Grandstream GSD3710 in its 1.0.11.13 version, could overflow the stack since it doesn't check the param length before use the strcopy instruction.
network
low complexity
grandstream CWE-787
critical
 9.8
9.8