CVE-2025-28171

Medium CVSS: 6.5

An issue in Grandstream UCM6510 v.1.0.20.52 and before allows a remote attacker to obtain sensitive information via the Login function at /cgi and /webrtccgi.

Vendor

Grandstream

Product

Ucm6510 Firmware

CWE

CWE-922

Yayın Tarihi

2025-07-29 16:15:24

Güncelleme

2025-08-06 20:48:13

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-922 Ucm6510 Firmware MEDIUM Grandstream 2025

Referanslar

http://grandstream.com http://ucm65xx.com https://gist.github.com/Exek1el/a1fe4288f0df0a47068d618579c6b647

Benzer Kayıtlar

Critical

CVE-2026-2329

An unauthenticated stack-based buffer overflow vulnerability exists in the HTTP API endpoint /cgi-bin/api.values.get. A…

High

CVE-2025-28170

Grandstream Networks GXP1628

Medium

CVE-2025-28172

Grandstream Networks UCM6510 v1.0.20.52 and before is vulnerable to Improper Restriction of Excessive Authentication Att…