CVE-2016-1520

EPSS 0.25% · P48 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-1520

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Grandstream Wave app 1.0.1.26 and earlier for Android does not use HTTPS when retrieving update information, which might allow man-in-the-middle attackers to execute arbitrary code via a crafted application.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Grandstream Wave app for Android 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Grandstream Wave app for Android是美国潮流网络（Grandstream）公司的一套免费的用于Android系统的网络电话应用程序。该应用程序支持多账户、多线路同时使用等。基于Android平台的Grandstream Wave 1.0.1.26之前的版本中存在安全漏洞，该漏洞源于程序在检索更新信息时，没有使用HTTPS。攻击者可借助特制的应用程序利用该漏洞实施中间人攻击，执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2016-1520

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2016-1520

请登录查看更多情报信息。

http://packetstormsecurity.com/files/136291/Grandstream-Wave-1.0.1.26-Update-Redirection.htmlx_refsource_MISC
https://rt-solutions.de/wp-content/uploads/2016/04/CVE-2016-1520-app-update-redirection.pdfx_refsource_MISC
http://www.securityfocus.com/archive/1/537821/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2016-1520

Same Patch Batch · n/a · 2017-04-21 · 47 CVEs total

CVE-2016-1194		Cybozu Garoon 安全漏洞
CVE-2016-4832		AEON WAON ‘Service Application’ for Android 安全漏洞
CVE-2016-4841		Cybozu Mailwise 安全漏洞
CVE-2016-4075		Opera Mini和Opera Stable 安全漏洞
CVE-2017-7220		OpenText Documentum Content Server 输入验证错误漏洞
CVE-2017-7409		Palo Alto Networks PAN-OS 跨站脚本漏洞
CVE-2017-7951		WonderCMS 跨站请求伪造漏洞
CVE-2017-7990		Reporting Module for OpenMRS 跨站请求伪造漏洞
CVE-2017-7992		Heartland Payment Systems heartland-php 跨站脚本漏洞
CVE-2016-4829		DMM Movie Player App 安全漏洞
CVE-2016-4830		Yanko Hernandez Garcia Sushiro App for iOS和for Android 安全漏洞
CVE-2016-1184		Tokyo Star bank App for Android和iOS 安全漏洞
CVE-2016-1148		Akerun-Smart Lock Robot App for iOS 安全漏洞
CVE-2016-0833		Android 安全漏洞
CVE-2016-6519		OpenStack Horizon 跨站脚本漏洞
CVE-2016-1557		多款Netgear产品安全漏洞
CVE-2016-1556		多款Netgear产品信息泄露漏洞
CVE-2016-1555		多款Netgear产品安全漏洞
CVE-2016-10091		unrtf 缓冲区错误漏洞
CVE-2016-0721		PCS 授权问题漏洞

Showing top 20 of 47 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2016-1520

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2016-1520

I. Basic Information for CVE-2016-1520

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2016-1520

III. Intelligence Information for CVE-2016-1520

Same Patch Batch · n/a · 2017-04-21 · 47 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2016-1520

Leave a comment