Grandstream GXP VOIP Phones Default Credentials Network Vulnerability

Summary

The remote Grandstream GXP VOIP Phone is prone to a default account authentication bypass vulnerability. This issue may be exploited by a remote attacker to gain access to sensitive information or modify system configuration.

Solution

Change the password.

References

http://dariusfreamon.wordpress.com/2013/10/30/grandstream-gxp-voip-phones-default-credentials/

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 9.0 AV:N/AC:L/Au:N/C:C/I:P/A:P

Related Vulnerabilities

Grandstream GXP VOIP Phones Default Credentials
Default password (db2fenc1) for db2fenc1
Default password (admin) for Linksys Router
Dell Remote Access Controller Default Login
Tandberg Devices Default Password

Take action and discover your vulnerabilities