CVE-2025-52918 Information
Jun 22, 2025
cve
Description
Yealink YMCS before 2025-05-26 does not prevent OpenAPI access by frozen enterprise accounts allowing unauthorized access to deactivated interfaces.
Reference
https://support.yealink.com/en/portal/knowledge/show?id=646b44278ef325311f38303f https://www.yealink.com/en/trust-center/security-advisories/1318c5efb82e4526
Related CNNVD
CNNVD-202506-2882 (Published: 2025-06-21)
Share on: