Login Sign Up

Grandstream Security Vulnerabilities (CVEs)

Track 6 security vulnerabilities affecting Grandstream products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

2 Critical
3 High
1 Medium
🔔 Get Alerts for Grandstream
CVE-2026-2329 9.8

An unauthenticated stack-based buffer overflow vulnerability in Grandstream GXP1600 series VoIP phones allows remote attackers to execute arbitrary co...

Feb 18, 2026
CVE-2025-28170 7.6

Grandstream GXP1628 IP phones with firmware version 1.0.4.130 or earlier have directory listing enabled by default, allowing attackers to browse sensi...

Jul 29, 2025
CVE-2025-28172 6.5

Grandstream UCM6510 PBX systems running firmware v1.0.20.52 and earlier lack rate limiting on authentication attempts, allowing attackers to brute for...

Jul 29, 2025
CVE-2024-32937 8.1

This CVE describes an OS command injection vulnerability in Grandstream GXP2135 IP phones' CWMP SelfDefinedTimeZone functionality. Attackers can send ...

Jul 3, 2024
CVE-2021-37915 8.8

This vulnerability allows attackers with access to the limited configuration shell on Grandstream HT801 Analog Telephone Adaptors to set a malicious g...

Oct 28, 2021
CVE-2020-25218 9.8

CVE-2020-25218 allows attackers to bypass authentication on Grandstream GRP261x VoIP phones' administrative web interface, granting full administrativ...

Mar 29, 2021

Why Monitor Grandstream Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 6+ known vulnerabilities affecting Grandstream products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Grandstream packages in under 60 seconds. No agents required - completely agentless scanning that works across Grandstream deployments.

Free vulnerability database: Access detailed information about every Grandstream CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

  • Register free account & add your servers
  • Run one-time scan or schedule automatic monitoring (every 1-24 hours)
  • Receive instant alerts when new Grandstream CVEs affect your systems
  • Access dashboard with severity breakdown & fix instructions
Start Monitoring Grandstream CVEs Free