CVE-2021-37748: Buffer Overflow
First published: Thu Oct 28 2021(Updated: )
Multiple buffer overflows in the limited configuration shell (/sbin/gs_config) on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manage_if setting, thus bypassing the intended restrictions of this shell and taking full control of the device. There are default weak credentials that can be used to authenticate.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Grandstream Ht801 Firmware | <1.0.29 | |
| Grandstream HT801 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-37748?
CVE-2021-37748 is a vulnerability that allows remote authenticated users to execute arbitrary code as root on Grandstream HT801 devices before 1.0.29, bypassing the intended restrictions of the limited configuration shell (/sbin/gs_config).
How severe is CVE-2021-37748?
CVE-2021-37748 has a severity rating of 8.8, which is considered critical.
What is the affected software for CVE-2021-37748?
Grandstream HT801 devices before version 1.0.29 are affected by CVE-2021-37748.
How can remote authenticated users exploit CVE-2021-37748?
Remote authenticated users can exploit CVE-2021-37748 by crafting a manage_if setting to execute arbitrary code as root on Grandstream HT801 devices.
Are all Grandstream HT801 devices vulnerable to CVE-2021-37748?
No, only Grandstream HT801 devices before version 1.0.29 are vulnerable to CVE-2021-37748.
- collector/nvd-index
- agent/event
- agent/type
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/grandstream
- canonical/grandstream ht801 firmware
- canonical/grandstream ht801