CVE-2020-5722CISA KEV: Actively Exploited

Grandstream Networks UCM6200 Series SQL Injection Vulnerability

Published Jan 28, 2022·Updated Jan 28, 2022

Description

Grandstream UCM6200 series is vulnerable to an unauthenticated remote SQL injection via crafted HTTP request. Exploitation can allow for code execution as root.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free