Vulnerabilities > Grandstream > Grp2614 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2021-03-29 CVE-2020-25217 Command Injection vulnerability in Grandstream products
Grandstream GRP261x VoIP phone running firmware version 1.0.3.6 (Base) allows Command Injection as root in its administrative web interface.
network
low complexity
grandstream CWE-77
7.2