A critical zero-day vulnerability, tracked as CVE-2026-2329, is affecting Grandstream’s GXP1600 series VoIP desk phones. The issue is an unauthenticated stack-based buffer overflow that can be exploited remotely to achieve root-level remote code execution (RCE) on a vulnerable device. Because the phones share a common firmware image across the series, all six models are impacted: GXP1610, […] The post PoC Exploit Released for Grandstream GXP1600 VoIP Phones RCE Vulnerability appeared first on Cyber Security News.