ГлавнаяУязвимости → CVE-2025-28170
7.6высокая

CVE-2025-28170

Описание

Grandstream Networks GXP1628 <=1.0.4.130 is vulnerable to Incorrect Access Control. The device is configured with directory listing enabled, allowing unauthorized access to sensitive directories and files.

Затрагиваемое ПО
Grandstream Gxp1628 firmwareGrandstream Gxp1628
CVSS
Балл7.6 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Источники
https://gist.github.com/Exek1el/928ea6fd06d3b48c1c91cfdc30317d8d