Grandstream Phone Web UI Information Disclosure
Medium Nessus Plugin ID 103513
SynopsisThe remote device is affected by an information disclosure vulnerability
DescriptionThe remote Grandstream phone is affected by an information disclosure vulnerability in the web administration interface due to the failure to restrict access to sensitive configuration data. An unauthenticated, remote attacker can exploit this to disclose sensitive information related to the device, such as the admin password.
SolutionUpgrade to the latest firmware verison.