Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Tag: yealink Clear
ID Title
CVE-2025-66737 Vulnerability in path-traversal (CVE-2025-66737)
vulnerability in path-traversal (CVE-2025-66737). Risk of unauthorized operations or information disclosure.
CVE-2025-66738 Command Injection in yealink (CVE-2025-66738)
command injection in yealink (CVE-2025-66738). Successful exploitation can lead to full system takeover.
CVE-2024-48352 Vulnerability in yealink (CVE-2024-48352)
vulnerability in yealink (CVE-2024-48352). Confidential information can be exposed externally.
CVE-2024-33109 Path Traversal in path-traversal (CVE-2024-33109)
path traversal in path-traversal (CVE-2024-33109). Confidential information can be exposed externally.
CVE-2021-27561 KEV [KEV] OS Command Injection in Yealink device-management (CVE-2021-27561)
OS command injection in Yealink device-management (CVE-2021-27561). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →