VYPR
High severity8.8NVD Advisory· Published Nov 6, 2017· Updated Jun 17, 2026

CVE-2017-16565

CVE-2017-16565

Description

Cross-Site Request Forgery (CSRF) in /cgi-bin/login on Vonage (Grandstream) HT802 devices allows attackers to authenticate a user via the login screen using the default password of 123 and submit arbitrary requests.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.