Grandstream (UCM6200) Data Breach
Grandstream (UCM6200) experienced a data breach that was reported on January 28, 2022. Grandstream UCM6200 series is vulnerable to an unauthenticated remote SQL injection via crafted HTTP request. Exploitation can allow for code execution as root.
Key Facts
- Organization
- Grandstream (UCM6200)
- Date Reported
- January 28, 2022
- Incident Type
- web app exploit
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding web app exploit Incidents
Web application exploits target vulnerabilities in websites and APIs. Secure development practices, WAFs, and penetration testing protect against these attacks.