Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Grandstream security patch release for CVE-2026-2329

Security Patch Release
First reported
Last updated
Happening score
H score 26
2 unique sources, 2 articles

Summary

Hide ▲

Grandstream released firmware 1.0.7.81 to fix CVE-2026-2329 in the GXP1600 series, closing an unauthenticated stack-based buffer overflow that could lead to root-level remote code execution on affected VoIP phones.

Related Happenings

Google security patch release for CVE-2026-21385

Security Patch Release
First: 03.03.2026 10:19 Last: 03.03.2026 10:19 Sources 1

About this happening: Google released **Android** security updates covering **129 vulnerabilities**, including an **actively exploited zero-day** in a **Qualcomm display component**, creating urgent ri...

Open Happening

Sangoma FreePBX web shell exploitation wave (CVE-2025-64328)

Exploitation Wave
First: 27.02.2026 19:59 Last: 27.02.2026 19:59 Sources 1

About this happening: More than **900 Sangoma FreePBX** instances remain **web-shell infected** after an **ongoing exploitation wave** tied to **CVE-2025-64328**. The affected systems span the **U.S.**...

Open Happening

CISA KEV multi-product active exploitation wave (CVE-2020-7796)

Exploitation Wave
First: 18.02.2026 08:52 Last: 18.02.2026 08:52 Sources 1

About this happening: **CISA** expanded its **KEV catalog** with **four actively exploited flaws**, signaling a live exploitation wave across **Chrome, TeamT5 ThreatSonar, Zimbra, and Windows Video Act...

Open Happening

Google Chrome zero-day patch (CVE-2026-2441)

Security Patch Release
First: 16.02.2026 13:30 Last: 16.02.2026 13:30 Sources 1

About this happening: **Google** released a security update for **Chrome on Windows, Mac, and Linux** to fix **CVE-2026-2441**, a **zero-day** with a reported **in-the-wild exploit**. The patch matters...

Open Happening

Ivanti security patch release for CVE-2026-1281

Security Patch Release
First: 30.01.2026 06:43 Last: 30.01.2026 06:43 Sources 1

About this happening: **Ivanti** released **security updates** for **Ivanti Endpoint Manager Mobile (EPMM)** after disclosure of **two critical zero-day flaws** that can enable **unauthenticated remote...

Latest development: 13.02.2026 00:05

Reported on Feb. 12, 2026, attacks tied to Ivanti Endpoint Manager Mobile (EPMM) had struck the European Commission and agencies of the Dutch and Finnish governments after Ivanti disclosed CVE-2026-1281 and CVE-2026-1340 on Jan. 29. The European Commission said its central infrastructure managing mobile devices was hit on Jan. 30, with staff names and mobile numbers compromised, while Valtori said an attack of the same nature affected around 50,000 people associated with Finland's central government and leaked names, email addresses, phone numbers, and other device details.

Open Happening

Timeline

  1. 18.02.2026 18:35 1 articles · 3mo ago

    Rapid7 researcher discovers CVE-2026-2329 in Grandstream GXP1600 phones

    Initial Disclosure

    Rapid7 researcher Stephen Fewer discovered and reported CVE-2026-2329 on January 6, 2026, describing an unauthenticated stack-based buffer overflow in the Grandstream GXP1600 series web API endpoint /cgi-bin/api.values.get that could let a remote attacker achieve root-privileged remote code execution on vulnerable devices.

    Show sources
    Open in new tab
  2. 18.02.2026 18:35 2 articles · 3mo ago

    Grandstream firmware 1.0.7.81 fixes CVE-2026-2329

    Mitigation Patch Update

    Grandstream firmware 1.0.7.81 is identified as the fix for CVE-2026-2329 in the GXP1610, GXP1615, GXP1620, GXP1625, GXP1628, and GXP1630 models, closing the unauthenticated stack-based buffer overflow in /cgi-bin/api.values.get that could be weaponized for root-privileged remote code execution.

    Show sources
    Open in new tab