CVE-2025-66737 | Yealink T21P_E2 Phone 52.84.0.15 Diagnostic path traversal

Inserito da Angelo Barbosa | Dic 26, 2025 | CVE

A vulnerability, which was classified as critical, was found in Yealink T21P_E2 Phone 52.84.0.15. The impacted element is an unknown function of the component Diagnostic. The manipulation results in path traversal.

This vulnerability is identified as CVE-2025-66737. The attack can be executed remotely. There is not any exploit available.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

CVE-2025-66737 | Yealink T21P_E2 Phone 52.84.0.15 Diagnostic path traversal

Post correlati

CVE-2023-6631 | Subnet Solutions PowerSYSTEM Center 2020 up to 5.16.x unquoted search path (icsa-23-353-01 / Update 17)

CVE-2024-41761 | IBM DB2/DB2 Connect Server 10.5/11.1/11.5 Query memory allocation

CVE-2024-4762 | Lenovo Accessories and Display Manager LADM/LDCC certificate validation

CVE-2024-14005 | Nagios XI up to 2024R1.1 Docker Wizard os command injection