Grandstream GXP16xx VoIP 1.0.4.128 Phones: Shell Metacharacter Injection Vulnerability

Grandstream GXP16xx VoIP 1.0.4.128 Phones: Shell Metacharacter Injection Vulnerability

CVE-2018-17565 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Shell Metacharacter Injection in the SSH configuration interface on Grandstream GXP16xx VoIP 1.0.4.128 phones allows attackers to execute arbitrary system commands and gain a root shell.

Learn more about our Web Application Penetration Testing UK.