What the vulnerability does

01Description

Grandstream HT800 series firmware version 1.0.17.5 and below contain a backdoor in the SSH service. An authenticated remote attacker can obtain a root shell by correctly answering a challenge prompt.

Key dates

02Disclosure timeline

July 29, 2020 CVE published
August 4, 2024 Record updated