menu
close×

    Ongoing Security Updates: We are committed to maintaining the security of all Grandstream products. Security updates will be provided for each product series as they become available, ensuring protection against emerging threats and vulnerabilities.

    Scope of Support: Security updates apply to the full range of Grandstream products, offering consistent protection across our entire product offering.

    How to Report a Security Vulnerability: If you've discovered a security vulnerability with a Grandstream product, software, or solution, you may submit this vulnerability here. Any submission will go to our Product Security Incident Response Team, and they will reach out with further questions if needed. Alternatively, click below to access our team's PGP Key for your submission and email our team here: psirt@grandstream.com

    Please note that this form is not for technical support inquiries. For technical support, please contact our Help Desk support team here: https://helpdesk.grandstream.com/  

    -----BEGIN PGP PUBLIC KEY BLOCK-----
    mQINBGVWiCIBEADA4JuHIV38ITLEibQcjzNHSNpRMwR94rrsQ8grwS5+mKUykkNG
    EzJyZVLar9aFfNp7B81yyiJx7T0J0MN3FLxbQwqw20g1Pp2G+VujSpbsQzmov1ok
    a3Iz7bqJk+nbugPc8lsLqJ48uDbwhAH9aMdLxahx5MXaDh5UaHP67ajlfM39C4w0
    CfBz2q6CAusvJwXl7PjWAjcv75noa2ucvEezzJB3s5vpg4OMExWmY5kJtZmhOdia
    1anaFsMOXn14ibW3Io2wtuWM4mxf0Tew5IWKYDen+U32ASsJnRuv5oGDowoQRxOx
    BcH4TUno41U4PSYdYk0AKqguyxJynw5iBuGBuAeEnUqJTga7dcheG5nqJlXghNwe
    qgsAFOm364Yo++ArFEExW21CdvAds3dZ1/2UbFglOHFa5TV30JPeIci4R/hYE+3U
    A0bdheUXcHB3k+hpp7krMLMS9Jc1qzSdpXDhFxc2+wjxIgYYctZ2IWJzAP7W867+
    JWytq9N9/CTs0P9zKuNCASoxnanQCg4KbBUBrtAWB3U/jq5WrxqYBJkTRCw7A0aL
    PmJSDrUp5IoxkOTYaBKEKxkmgZkPV1AY4Dl95WSedURZ3PeiYzyYM5X0w144ZlmE
    eqH3TVkY4dGAgJZHAjmBLpiP40oCRefgPKBfnGBc/cAISXcQ+lNKic9LJwARAQAB
    tD9Qcm9kdWN0IFNlY3VyaXR5IEluY2lkZW50IFJlc3BvbnNlIFRlYW0gPHBzaXJ0
    QGdyYW5kc3RyZWFtLmNvbT6JAk4EEwEIADgWIQTcCkPKDfsAnscN7x6NAGMUycpl
    9gUCZVaIIgIbAwULCQgHAgYVCgkICwIEFgIDAQIeAQIXgAAKCRCNAGMUycpl9jEG
    D/99ehqV0J53DtcN2VQLkfv8aOJHpuwFWMYxZWZcKPYGMQfms0FJJpVP+VeKWIij
    OqsyRzyeSemeskHCzlOY2qVY1CRu6X4tuW3hWkX9OQi58TzUO9dCXogOkASTds+4
    06zdO+JC3VWWoxx3Q3rh4dYDJOhtpROqzM4dn8CPuv80Juyu/ggfIex38kQEwRl3
    PsGFtekwqEEC2pR6Eo2xm54ex35vPKmoq3YbIUIcCSUXhroamF0do5BNrOQGHHcS
    GEmrutmIDNvrONHLpwxcmpxvP2ckuTTRMxQxrEiMSsxKa0vjx/WVf4WRU3U9dDmE
    fGUhRbQFhITmD7GQi38J0HQtr/fsRIGwYXmbnFKjbMsF7Q/qJOLtv6bY534baKkU
    qu/FPQ712Gls5igpSsM9xjf5+AfMzhwlsQs/3W5MAJg4Jf//0vhZ69iOlcBSC7F8
    2X/qvGfR+l9H/DQbIUCVEJK1UW7qJDgYvShl0DnNdtktT4PPvnSZ6sfwQ/4vB+d9
    ZalfJHTaoqqOipY6u88MiRBEwFL6w7s+EqnkBoSisCO7fb1YWtavytT7u9yjUSpQ
    fwvyMjEGJSFd+kAd3lHePlwIf0dmXPZwVODy3JMCHREBPNvJN3P9zxxkR1Jf8tbC
    dABiakxsRy/ssAmBHjdOQfhjwu99WX7kOLTF9riyLmtxhbkCDQRlVogiARAAw8Iy
    4krCfBGlR1K69wrpoYXEF9Ly1IFPcAD/W9baCZfUO5dbKBS1gd38vwOK7hdhKyjt
    uVrbHVlwBT4ccYI4qKnAF6kLUrGuIo0xz2ogIBTkmd90/B73DrsSoJFjnYs62d2x
    mtK5c8+S/+a4hKN2oJbfXRa0ZG50x3h+3Tza6aT/LGpfT45gjg7Im7GgTilWGo90
    T/yDqGNQbygv1V50rsY0TgYJv7jXBaNfnubS8BDtxT2P57fS3rOl4LbvILWG/D0K
    inKlD5m0PXLqjBiDktxgpPfB1VGWFTFl1bNNJRySrAIra462Ks5n1eZ3+3/xRJhC
    0I7hRZ6IX6y3apI5DDEy5q1ZczmJNBlwRULObp5dsr6AXxvJoF+m6cZxZ/z31i95
    0eOYHjwvA6HzVql2HHxJ5MmJTv0nDiD02hkxU9GhvMXoQ7yUX6HODV+vyFgy+b/w
    OvoKNVjHbQOxC1V6Eqrwvk7QhwftlaHoYxsnp6nXuO1FfRtBBfm1pSyfFO3SvMB/
    a2gMnJDrXtjdjMvr8qg9h2DKHr/A7kQOUc/Srh7XZo3SB4/Oc2TSp/B0qR8yDlqO
    pswquUXQfD/x4gUwwZrHEeXb5/btIMBG16IdUcuNZIzl5kMEu9LUN+1aIUWd2Oi9
    JYnCVCpQ4qzPkCUP8YydINZ+WQ5Jt5tVl5xxS/kAEQEAAYkCNgQYAQgAIBYhBNwK
    Q8oN+wCexw3vHo0AYxTJymX2BQJlVogiAhsMAAoJEI0AYxTJymX2/JcP/3FXEnUy
    yU4vjeFHT4pFR1bW2nh1h/s9ElvkvYC3uMawKWxfEXlPCwdK+h42xhQV0fCnNrw+
    05rpK1q3zwcUGJWgckw5vtoyCDu1dEJf8SYQUA2ZG+hPXSMgfszuVI/C4VSHa9+a
    cuY9Zq2qa752O0Vk1Y2Fhzd5ZiuP5q3RxXXEcedVjdfcowv8Hg+v6l8EacBewdUl
    q7Bw7Pkv073436xc6CM8lDFbzZKgTkozVyzFf93keBz3HEKJDfARCU+7cMTmWrDi
    LE4OvetkZVTuYhz6iOS+0gv8knLOj4lHcZemciorQbMbZbS+96fCAmv6gVWYdMIE
    FP0OfVHJVBnZihvtqBMXJMq/+Mk10lADgxw32tiUDCEWSxapPr9TQE9NcVNDQBPH
    Vf9cb2zCyLgEd7jEwdIPcW21X5ro3rZ8t6HNAweA8VCJWr+4xV8SoSaMep7u5u1T
    DNnyn3dnzrYNP4D2X2z59aTVbwcwZQp7sJjVROi4ezQ6d7BHI5K9kELmnTMd/uBu
    4fYcVUx4xySzzbkeYDGgw3PoGKXq2Yio8sCWI3Ewz6ni2gAs+cQeCZijB/uBnJlH
    45h0PpgWC1eP34ip30i0ySOhQGNMYcT/+t5cHj5c9vHlSAmQAZTM2a8hFU1shiS9
    AYN699ZVa4WV+uyJb6H6MVvf9xjg+kbXsl32
    =YlHq
    -----END PGP PUBLIC KEY BLOCK-----

     

    How do we Handle Potential Vulnerabilities: After you submit a report using the form on this website, we will classify and verify the vulnerability. If the vulnerability exists, we will contact the relevant department to deal with it and will respond with the results within 15 business days. All confirmed security vulnerabilities will be fixed within 90 days via software updates. All product vulnerability information belongs to Grandstream, and the vulnerability discoverer and the insider shall not release any vulnerability information without authorization.

    Please do not do the following:

    • Break any applicable law or regulations
    • Access unnecessary, excessive, or significant amounts of data
    • Use high-intensity invasive or destructive scanning tools to find vulnerabilities
    • Engage in social engineering
    • Execute or attempt to execute “Denial of Service” or “Resource Exhaustion” attacks
    • Delete, alter, share, retain, or destroy the Organization's services or systems