CVE-2026-2329 allows unauthenticated root-level access to SMB phone infrastructure, so attackers can intercept calls, commit toll fraud, and impersonate users.
Critical Grandstream VoIP Bug Highlights SMB Security Blind Spot
Summary + source link. No paywalls, no tracking.