CVE-2020-5722

⚠ KEVEPSS 92.7%

Grandstream Networks UCM6200 Series SQL Injection Vulnerability

Added to CISA KEV: 1/28/2022

Description

Grandstream UCM6200 series is vulnerable to an unauthenticated remote SQL injection via crafted HTTP request. Exploitation can allow for code execution as root.

Affected packages (0)

No package mapping in OSV.