All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2020-5722
NONEKEVpublish date unavailable
CVSS / 10
// description
Grandstream UCM6200 series is vulnerable to an unauthenticated remote SQL injection via crafted HTTP request. Exploitation can allow for code execution as root.
// required action (CISA KEV)
Apply updates per vendor instructions.
added 2022-01-28 00:00 UTC