Unrated severityNVD Advisory· Published Jul 29, 2025· Updated Jul 29, 2025

CVE-2025-28172

Description

Grandstream Networks UCM6510 v1.0.20.52 and before is vulnerable to Improper Restriction of Excessive Authentication Attempts. An attacker can perform an arbitrary number of authentication attempts using different passwords and eventually gain access to the targeted account using a brute force attack.

Affected products

Grandstream Networks/UCM6510description
Grandstream/UCM6510llm-create
Range: <=1.0.20.52

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

grandstream.commitre
gist.github.com/Exek1el/6291185a87c98d4229181212b2bd5cdfmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000