What is CVE-2020-5724?

CVE-2020-5724 is a vulnerability in Grandstream Ucm6200 Series, classified under SQL Injection. Published 2020-03-30.

Is CVE-2020-5724 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

SQL Injection in Grandstream Ucm6200 Series

CVE-2020-5724

The Grandstream UCM6200 series before 1.0.20.22 is vulnerable to an SQL injection via the HTTP server's websockify endpoint. A remote unauthenticated attacker can invoke the challenge action with a crafted username and discover user passwo…

Vulnerability class: SQL Injection

EPSS: 0.600 (98.3th percentile) — read the EPSS interpretation.

Affected products

N/a Grandstream Ucm6200 Series — versions 1.0.20.20 and below

Weakness classification (CWE)

CWE-89 — SQL Injection

Public proof-of-concept exploits

rapid7/metasploit-framework
ARPSyndicate/cvemon

References

www.tenable.com/security/research/tra-2020-17 (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2020-5724?: CVE-2020-5724 is a vulnerability in Grandstream Ucm6200 Series, classified under SQL Injection. Published 2020-03-30.
Is CVE-2020-5724 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.