CNNVD-202512-4800 Information

CNNVD ID

CNNVD-202512-4800

Related CVE

CVE-2025-66738

• CNNVD Published: 2025-12-26

Description (Chinese)

Yealink T21P_E2是中国亿联（Yealink）公司的一款IP电话机。 Yealink T21P_E2 52.84.0.15版本存在安全漏洞，该漏洞源于诊断组件ping功能存在缺陷，可能导致远程攻击者执行任意代码。

Description (English)

Yealink T21P E2 is an IP phone for Yealink. Yealink T21P E2 5284.0.15 has a security loophole, which stems from deficiencies in the function of the diagnostic component ping, which may result in the remote attacker performing any code.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

亿联

Published

2025-12-26

Last Modified

2026-02-24

References

http://yealink.com https://drive.google.com/file/d/13t5ywSPJMx4487njJcH3ZTNuc_k3h4ty/view?usp=sharing https://access.redhat.com/security/cve/cve-2025-66738