Yealink: community verdicts
5 notable / known-exploited Yealink CVEs the community has triaged.
- CVE-2021-27561CRIT 9.8KEVEPSS 83%
Yealink Device Management (DM) 3.6.0.20 allows command injection as root via the /sm/api/v1/firewall/zone/services URI, without authentication.
- CVE-2024-33109CRIT 9.9Real · low riskEPSS 1%
Directory Traversal in the web interface of the Tiptel IP 286 with firmware version 2.61.13.10 allows attackers to overwrite arbitrary files on the phone via the Ringtone upload function.
- CVE-2025-66737MED 4.3EPSS 1%
Yealink T21P_E2 Phone 52.84.0.15 is vulnerable to Directory Traversal. A remote normal privileged attacker can read arbitrary files via a crafted request result read function of the diagnostic component.
- CVE-2025-66738HIGH 8.8Real · low riskEPSS 1%
An issue in Yealink T21P_E2 Phone 52.84.0.15 allows a remote normal privileged attacker to execute arbitrary code via a crafted request the ping function of the diagnostic component.
- CVE-2024-48352HIGH 7.5Real · low riskEPSS 0%
Yealink Meeting Server before V26.0.0.67 is vulnerable to sensitive data exposure in the server response via sending HTTP request with enterprise ID.