High severity7.6NVD Advisory· Published Jul 29, 2025· Updated Jul 5, 2026
CVE-2025-28170
CVE-2025-28170
Description
Grandstream Networks GXP1628 <=1.0.4.130 is vulnerable to Incorrect Access Control. The device is configured with directory listing enabled, allowing unauthorized access to sensitive directories and files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=1.0.4.130
Patches
Vulnerability mechanics
References
1- gist.github.com/Exek1el/928ea6fd06d3b48c1c91cfdc30317d8dnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.