Filtered by vendor Yealink
Subscriptions
Filtered by product Ip Phone Sip-t21p
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-66738 | 1 Yealink | 2 Ip Phone Sip-t21p, Sip-t21p E2 | 2025-12-29 | 8.8 High |
| An issue in Yealink T21P_E2 Phone 52.84.0.15 allows a remote normal privileged attacker to execute arbitrary code via a crafted request the ping function of the diagnostic component. | ||||
| CVE-2025-66737 | 1 Yealink | 2 Ip Phone Sip-t21p, Sip-t21p E2 | 2025-12-29 | 4.3 Medium |
| Yealink T21P_E2 Phone 52.84.0.15 is vulnerable to Directory Traversal. A remote normal privileged attacker can read arbitrary files via a crafted request result read function of the diagnostic component. | ||||
| CVE-2012-1417 | 1 Yealink | 14 Gigabit Color Ip Phone Sip-t32g, Gigabit Color Ip Phone Sip-t38g, Ip Phone Sip-t19p and 11 more | 2025-04-12 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Local Phone book and Blacklist form in Yealink VOIP Phones allow remote authenticated users to inject arbitrary web script or HTML via the user field to cgi-bin/ConfigManApp.com. | ||||
Page 1 of 1.