High severity8.8NVD Advisory· Published Jul 17, 2020· Updated Jun 17, 2026
CVE-2020-5758
CVE-2020-5758
Description
Grandstream UCM6200 series firmware version 1.0.20.23 and below is vulnerable to OS command injection via HTTP. An authenticated remote attacker can execute commands as the root user by sending a crafted HTTP GET to the UCM's "Old" HTTPS API.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <=1.0.20.23
Patches
Vulnerability mechanics
References
2- www.tenable.com/security/research/tra-2020-42nvdBroken LinkThird Party Advisory
- www.tenable.com/cve/CVE-2020-5758nvdNot Applicable
News mentions
0No linked articles in our index yet.