CVE-2024-0840

Grandstream UCM Series IP PBX HTTP Parameter Injection

Severity Score

8.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track*

*SSVC

Descriptions

The Grandstream UCM Series IP PBX before firmware version 1.0.20.52 is affected by a parameter injection vulnerability in the HTTP interface. A remote and authenticated attacker can execute arbitrary code by sending a crafted HTTP request. Authentication may be possible using a default user and password. Affected models are the UCM6202, UCM6204, UCM6208, and UCM6510.

La central IP Grandstream UCM Series anterior a la versión de firmware 1.0.20.52 se ve afectada por una vulnerabilidad de inyección de parámetros en la interfaz HTTP. Un atacante remoto y autenticado puede ejecutar código arbitrario enviando una solicitud HTTP manipulada. La autenticación puede ser posible utilizando un usuario y una contraseña predeterminados. Los modelos afectados son UCM6202, UCM6204, UCM6208 y UCM6510.

*Credits: Jacob Baines (VulnCheck)

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

Partial

Integrity

Partial

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Track*

Exploitation

None

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2024-01-23 CVE Reserved
2024-04-29 CVE Published
2024-04-30 EPSS Updated
2024-08-01 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-141: Improper Neutralization of Parameter/Argument Delimiters

CAPEC

CAPEC-137: Parameter Injection

References (1)

URL	Tag	Source
https://vulncheck.com/advisories/grand-stream-param-injection

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Grandstream Search vendor "Grandstream"		Ucm6202 Firmware Search vendor "Grandstream" for product "Ucm6202 Firmware"				*		-		Affected
Grandstream Search vendor "Grandstream"		Ucm6204 Firmware Search vendor "Grandstream" for product "Ucm6204 Firmware"				*		-		Affected
Grandstream Search vendor "Grandstream"		Ucm6208 Firmware Search vendor "Grandstream" for product "Ucm6208 Firmware"				*		-		Affected
Grandstream Search vendor "Grandstream"		Ucm6510 Firmware Search vendor "Grandstream" for product "Ucm6510 Firmware"				*		-		Affected