How severe is CVE-2025-28170?

CVE-2025-28170 has a CVSS v3 score of 7.6 (HIGH).

CVE-2025-28170

Name: gxp1628
Author: grandstream

7.6HIGH

Grandstream Networks GXP1628 <=1.0.4.130 is vulnerable to Incorrect Access Control. The device is configured with directory listing enabled, allowing unauthorized access to sensitive directories and f

公開日: 7/29/2025更新日: 8/6/2025

説明

Grandstream Networks GXP1628 <=1.0.4.130 is vulnerable to Incorrect Access Control. The device is configured with directory listing enabled, allowing unauthorized access to sensitive directories and files.

AI分析AIによる分析

影響を受ける製品

grandstreamgxp1628_firmware

grandstreamgxp1628

参照

http://grandstream.com
Product
https://gist.github.com/Exek1el/928ea6fd06d3b48c1c91cfdc30317d8d
ExploitThird Party Advisory