Browse all 6 CVE security advisories affecting Grandstream. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-2329 | Grandstream GXP1600 VoIP Phones - Unauthenticated stack buffer overflow — GXP1610CWE-121 | 9.8 | - | 2026-02-18 |
| CVE-2025-14186 | Grandstream GXP1625 Network Status api.values.post cross site scripting — GXP1625CWE-80 | 3.5 | Low | 2025-12-07 |
| CVE-2024-32937 | Grandstream GXP2135 操作系统命令注入漏洞 — GXP2135CWE-78 | 8.1 | High | 2024-07-03 |
| CVE-2024-0840 | Grandstream UCM Series IP PBX HTTP Parameter Injection — UCM SeriesCWE-141 | 8.8 | High | 2024-04-29 |
| CVE-2022-2070 | Grandstream GSD3710 Stack-based Buffer Overflow — Grandstream GSD3710CWE-121 | 9.8 | Critical | 2022-09-23 |
| CVE-2022-2025 | Grandstream GSD3710 Stack-based Buffer Overflow — Grandstream GSD3710CWE-121 | 9.8 | Critical | 2022-09-23 |
This page lists every published CVE security advisory associated with Grandstream. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.