CVE-2022-2070

Grandstream GSD3710 Stack-based Buffer Overflow

Description

In Grandstream GSD3710 in its 1.0.11.13 version, it's possible to overflow the stack since it doesn't check the param length before using the sscanf instruction. Because of that, an attacker could create a socket and connect with a remote IP:port by opening a shell and getting full access to the system. The exploit affects daemons dbmng and logsrv that are running on ports 8000 and 8001 by default.

Remediation

Solution:

  • This vulnerability has been solved by Grandstream in the 1.0.11.23 version.

Categories

9.8
CVSS
Severity: Critical
CVSS 3.1 •
EPSS 0.08%
Third-Party Advisory incibe-cert.es
Affected: Grandstream Grandstream GSD3710
Published at:
Updated at:

References

Link Tags
https://www.incibe-cert.es/en/early-warning/security-advisories/buffer-overflow-vulnerabilities-grandstream-gsd3710 third party advisory

Frequently Asked Questions

What is the severity of CVE-2022-2070?
CVE-2022-2070 has been scored as a critical severity vulnerability.
How to fix CVE-2022-2070?
To fix CVE-2022-2070: This vulnerability has been solved by Grandstream in the 1.0.11.23 version.
Is CVE-2022-2070 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-2070 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-2070?
CVE-2022-2070 affects Grandstream Grandstream GSD3710.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.