CVE-2020-5722CISA KEVEPSS p99.7%

CVE-2020-5722Grandstream Networks UCM6200 Series SQL Injection Vulnerability

Grandstream / UCM6200

Description

Grandstream UCM6200 series is vulnerable to an unauthenticated remote SQL injection via crafted HTTP request. Exploitation can allow for code execution as root.

Scoring

EPSS83.65% probability of exploitation · percentile 99.7% · 2026-06-17T12:03:21Z

CISA KEV entry

Added to KEV: 2022-01-28

(incoming)1

TypeTargetConfidenceTier
KEVEntryGrandstream Networks UCM6200 Series SQL Injection Vulnerabilitykev-cve-2020-57220%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CyberoamOS (CROS) SQL Injection Vulnerability
CVE
Cisco Unified Communications Products Code Injection Vulnerability
CVE
Yealink Device Management Server-Side Request Forgery (SSRF) Vulnerability
CVE
CVE-2025-46268
CVE
CVE-2022-40765
CVE
Fortinet FortiWeb SQL Injection Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.