Grandstream Networks GXP1628 <=1.0.4.130 is vulnerable to Incorrect Access Control. The device is configured with directory listing enabled, allowing unauthorized access to sensitive directories and files.
A directory listing is inappropriately exposed, yielding potentially sensitive information to attackers.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Gxp1628_firmware | Grandstream | * | 1.0.4.130 (including) |