CVE-2020-5760

EPSS 5.05% · P90 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-5760

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote attackers can execute arbitrary commands as root by crafting a special configuration file and sending a crafted SIP message.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

OS命令中使用的特殊元素转义处理不恰当(OS命令注入)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Grandstream HT800 series 操作系统命令注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Grandstream HT800 series是美国潮流网络（Grandstream）公司的一款HT800系列模拟电话适配器。使用1.0.17.5及之前版本固件的Grandstream HT800 series中存在操作系统命令注入漏洞漏洞。远程攻击者可通过创建配置文件并发送特制的SIP消息利用该漏洞以root用户身份执行任意命令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	Grandstream HT800 Series	Versions 1.0.17.5 and below	-

II. Public POCs for CVE-2020-5760

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-5760

请登录查看更多情报信息。

https://www.tenable.com/security/research/tra-2020-47x_refsource_MISC
Grandstream ATA HT800 Series Multiple Vulnerabilities - Research Advisory | Tenable®x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-5760

Same Patch Batch · n/a · 2020-07-29 · 28 CVEs total

CVE-2020-7697	9.8 CRITICAL	Command Injection
CVE-2020-7698	8.1 HIGH	Command Injection
CVE-2019-20031		NEC UM8000和UM4730 安全漏洞
CVE-2020-2076		Sick Package Analytics 授权问题漏洞
CVE-2020-2077		Sick Package Analytics 安全漏洞
CVE-2020-2078		Sick Package Analytics 安全漏洞
CVE-2020-16095		TYPO3 dlf extension 跨站脚本漏洞
CVE-2020-13699		TeamViewer 代码问题漏洞
CVE-2019-20025		NEC SV9100 PBX 信任管理问题漏洞
CVE-2019-20026		NEC SV9100 输入验证错误漏洞
CVE-2019-20027		多款NEC产品授权问题漏洞
CVE-2019-20028		多款NEC产品信息泄露漏洞
CVE-2019-20029		多款NEC产品安全漏洞
CVE-2019-20030		NEC UM8000 安全漏洞
CVE-2020-16143		Seafile seafile-client 代码问题漏洞
CVE-2019-20032		多款NEC产品安全漏洞
CVE-2019-20033		NEC SV8100 安全漏洞
CVE-2020-15588		ZOHO ManageEngine Desktop Central 输入验证错误漏洞
CVE-2020-16118		GNOME Balsa 代码问题漏洞
CVE-2020-16117		GNOME evolution-data-server 代码问题漏洞

Showing top 20 of 28 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Grandstream HT800 Series

Same vendor: n/a

Same weakness: CWE-78

V. Comments for CVE-2020-5760

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-5760

I. Basic Information for CVE-2020-5760

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-5760

III. Intelligence Information for CVE-2020-5760

Same Patch Batch · n/a · 2020-07-29 · 28 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-5760

Leave a comment