Описание
Yealink T21P_E2 Phone 52.84.0.15 is vulnerable to Directory Traversal. A remote normal privileged attacker can read arbitrary files via a crafted request result read function of the diagnostic component.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:yealink:sip-t21\(p\)e2_firmware:52.84.0.15:*:*:*:*:*:*:*
cpe:2.3:h:yealink:sip-t21\(p\)e2:-:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00075
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-23
Связанные уязвимости
CVSS3: 6.5
github
около 1 месяца назад
Yealink T21P_E2 Phone 52.84.0.15 is vulnerable to Directory Traversal. A remote normal privileged attacker can read arbitrary files via a crafted request result read function of the diagnostic component.
EPSS
Процентиль: 23%
0.00075
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-23