Grandstream Exploits

March 31, 2019 ยท View on GitHub

Below are working PoCs for a bunch of remote code execution vulnerabilties that I found in a range of Grandstream devices.

CVEModelDevice TypeVulnerabilityAffected Versions
CVE-2019-10655GAC2500Audio Conferencing UnitUnauthenticated RCE<= 1.0.3.35
CVE-2019-10655GVC3202Video Conferencing UnitUnauthenticated RCE< 1.0.3.51
CVE-2019-10655GXV3275IP Video PhoneUnauthenticated RCE< 1.0.3.219
CVE-2019-10655GXV3240IP Video PhoneUnauthenticated RCE< 1.0.3.219
CVE-2019-10655GXP2200*IP Video PhoneUnauthenticated RCE<= 1.0.3.27
CVE-2019-10659GXV3370IP Video PhoneAuthenticated RCE< 1.0.1.41
CVE-2019-10656GWN7000Enterprise RouterAuthenticated RCE< 1.0.6.32
CVE-2019-10658GWN7610WiFi Access PointAuthenticated RCE< 1.0.8.18
CVE-2019-10660GXV3611IR_HDIP CameraAuthenticated RCE< 1.0.3.23
CVE-2019-10662UCM62xxIP PBXAuthenticated RCE< 1.0.19.20
CVE-2019-10659WP820Enterprise WiFi IP PhoneAuthenticated RCE< 1.0.3.6

* Unpatched due to end of life product.