CVE-2025-66737

Publication date

2025-12-26 00:00:00

Family

mitre

State

PUBLISHED

Description

Yealink T21P_E2 Phone 52.84.0.15 is vulnerable to Directory Traversal. A remote normal privileged attacker can read arbitrary files via a crafted request result read function of the diagnostic component.