CVE-2020-5762 - Grandstream Ht812 Firmware, Grandstream Ht814 Firmware and Grandstream Ht801 Firmware
Critical 7.5
Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to a denial of service attack against the TR-069 service. An unauthenticated remote attacker can stop the service due to a NULL pointer dereference in the TR-069 service. This condition is triggered due to mishandling of the HTTP Authentication field.
Affected software
Grandstream Ht812 Firmware
Grandstream Ht814 Firmware
Grandstream Ht801 Firmware
Grandstream Ht802 Firmware
Grandstream Ht813 Firmware
Grandstream Ht818 Firmware