Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution

Cybersecurity researchers have disclosed a critical security flaw in the Grandstream GXP1600 series of VoIP phones that could allow an attacker to seize control of susceptible devices. The vulnerability, tracked as CVE-2026-2329 , carries a CVSS score of 9.3 out of a maximum of 10.0. It has been...

EUVD-2026-2329

In the Linux kernel, the following vulnerability has been resolved: usb: phy: fsl-usb: Fix use-after-free in delayed work during device removal The delayed work item otgevent is initialized in fslotgconf and scheduled under two conditions: 1. When a host controller binds to the OTG controller. 2...

CVE-2019-2329

Use after free issue in cleanup routine due to missing pointer sanitization for a failed start of a trusted application. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845,...

CGA-2329-CX4W-CM44

Bulletin has no description...

CVE-2025-2329

In high traffic environments, a Silicon Labs OpenThread RCP see impacted versions fails to clear the SPI transmit buffer and may send a corrupt packet over SPI to its host, causing the host to reset the RCP which results in a denial of service...

CVE-2025-2329

In high traffic environments, a Silicon Labs OpenThread RCP see impacted versions fails to clear the SPI transmit buffer and may send a corrupt packet over SPI to its host, causing the host to reset the RCP which results in a denial of service...

CVE-2025-2329 High traffic causes corrupt SPI packets in OpenThread leading to denial of service

In high traffic environments, a Silicon Labs OpenThread RCP see impacted versions fails to clear the SPI transmit buffer and may send a corrupt packet over SPI to its host, causing the host to reset the RCP which results in a denial of service...

CVE-2025-2329

CVE-2025-2329 affects Silicon Labs OpenThread RCP. In high-traffic environments, the SPI transmit buffer may not be cleared, potentially sending a corrupt SPI packet to the host and causing the host to reset the RCP, resulting in a denial of service. Connected sources confirm the issue and refere...

CGA-2329-X2QF-95FQ

Bulletin has no description...

CVE-2024-2329

creationtimestamp| type| source ---|---|--- 2024-03-09 09:26:54+00:00| seen| https://t.me/ctinow/203849 2024-03-09 09:26:57+00:00| seen| https://t.me/ctinow/203852...

CVE-2024-2329

CVE-2024-2329 affects Netentsec NS-ASG Application Security Gateway 6.3. The vulnerability is a SQL injection in the unknown functionality of the endpoint /admin/list_resource_icon.php?action=delete, triggered by manipulating the IconId parameter. This is reported as exploitable remotely, with se...

CVE-2019-2329

creationtimestamp| type| source ---|---|--- 2024-01-09 07:02:29+00:00| seen| https://t.me/ctinow/164815...

CVE-2023-2329

The WooCommerce Google Sheet Connector WordPress plugin before 1.3.6 does not have CSRF check when updating its Access Code, which could allow attackers to make logged in admin change the access code to an arbitrary one via a CSRF attack...

CVE-2023-2329

The CVE-2023-2329 entry corresponds to a CSRF vulnerability in the WooCommerce Google Sheet Connector WordPress plugin (versions before 1.3.6). The issue is a lack of CSRF protection when updating the Access Code, which could let an attacker, via CSRF, cause a logged-in administrator to change th...

WordPress WooCommerce Google Sheet Connector Plugin <= 1.3.5 is vulnerable to Cross Site Request Forgery (CSRF)

Software WooCommerce Google Sheet Connector Type Plugin Vulnerable versions = 1.3.5 Fixed in 1.3.6 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-2329 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID d1cb29a7b9f8 Credits...

CVE-2022-2329

A CWE-190: Integer Overflow or Wraparound vulnerability exists that could cause heap-based buffer overflow, leading to denial of service and potentially remote code execution when an attacker sends multiple specially crafted messages. Affected Products: IGSS Data Server - IGSSdataServer.exe...

CVE-2022-2329

Schneider Electric IGSS Data Server (IGSSdataServer.exe) is affected by a CWE-190 integer overflow in versions prior to V15.0.0.22073, leading to a heap-based buffer overflow that could cause denial of service and potentially remote code execution when handling specially crafted messages. Affecte...

Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Sourcing (CVE-2021-2329)

Summary An Oracle database server vulnerability has been addressed by BM Emptoris Sourcing. Vulnerability Details CVEID: CVE-2021-2329 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the XML DB component could allow an authenticated attacker to take control of the...

Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Contract Management (CVE-2021-2329)

Summary An Oracle database server vulnerability has been addressed by IBM Emptoris Contract Management. Vulnerability Details CVEID: CVE-2021-2329 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the XML DB component could allow an authenticated attacker to take...

Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Supplier Lifecycle Mgmt (CVE-2021-2329)

Summary An Oracle database server vulnerability has been addressed by IBM Emptoris Supplier Lifecycle Mgmt. Vulnerability Details CVEID: CVE-2021-2329 DESCRIPTION: An unspecified vulnerability in Oracle Database Server related to the XML DB component could allow an authenticated attacker to take...