Grandstream GXP VOIP Phones Default Credentials Network Vulnerability

Summary

The remote Grandstream GXP VOIP Phone is prone to a default account authentication bypass vulnerability. This issue may be exploited by a remote attacker to gain access to sensitive information or modify system configuration.

Solution

Change the password.

References

http://dariusfreamon.wordpress.com/2013/10/30/grandstream-gxp-voip-phones-default-credentials/

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 9.0
AV:N/AC:L/Au:N/C:C/I:P/A:P

Related Vulnerabilities

F5 Networks BIG-IP Webinterface Default Credentials
HTTP Brute Force Logins with default Credentials
Fujitsu KVM Default Login
Tandberg Devices Default Password
Siedle Door Controller Default Password

Take action and discover your vulnerabilities