Lucene search
K

118 matches found

CNNVD
CNNVD
added 2025/12/26 12:0 a.m.4 views

Yealink T21P_E2 安全漏洞

Yealink T21PE2 is an IP Phone from China Yealink. A security vulnerability exists in Yealink T21PE2 Phone version 52.84.0.15, which stems from a path traversal issue in the Diagnostics Component Read function, which could allow a remote attacker to read arbitrary files...

4.3CVSS6.7AI score0.00608EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/26 12:0 a.m.2 views

CVE-2025-66738

An issue in Yealink T21PE2 Phone 52.84.0.15 allows a remote normal privileged attacker to execute arbitrary code via a crafted request the ping function of the diagnostic component...

7.5AI score0.00582EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/09 8:26 p.m.6 views

CVE-2025-14228

A weakness has been identified in Yealink SIP-T21P E2 52.84.0.15. Impacted is an unknown function of the component Local Directory Page. This manipulation causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be...

5.1CVSS5.6AI score0.00198EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/08 10:32 a.m.30 views

CVE-2025-14228 Yealink SIP-T21P E2 Local Directory cross site scripting

A weakness has been identified in Yealink SIP-T21P E2 52.84.0.15. Impacted is an unknown function of the component Local Directory Page. This manipulation causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be...

5.1CVSS0.00198EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/08 10:32 a.m.6 views

EUVD-2025-201706

A weakness has been identified in Yealink SIP-T21P E2 52.84.0.15. Impacted is an unknown function of the component Local Directory Page. This manipulation causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be...

5.1CVSS5.1AI score0.00198EPSS
Exploits0References5
CVE
CVE
added 2025/12/08 10:32 a.m.15 views

CVE-2025-14228

CVE-2025-14228 affects Yealink SIP-T21P E2 (firmware 52.84.0.15). The issue is a cross-site scripting vulnerability in an unknown function of the Local Directory Page, allowing remote initiation of an attack. Public exploit code exists and has been reported through multiple feeds, with vendor con...

5.1CVSS5.2AI score0.00198EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/08 12:0 a.m.4 views

Yealink SIP-T21P E2 代码注入漏洞

Yealink SIP-T21P E2 is an enterprise IP phone from China Yealink. A code injection vulnerability exists in Yealink SIP-T21P E2 version 52.84.0.15, which originates from a cross-site scripting vulnerability in the local catalog page component...

5.1CVSS4.8AI score0.00198EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-10725

Malware in sbrugna...

10CVSS9.5AI score0.03882EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-4655

Malware in sbrugna...

7.5CVSS6.2AI score0.02348EPSS
Exploits3References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-32439

Malicious code in bioql PyPI...

9.8CVSS6.8AI score0.01699EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-46121

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01699EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-53928

Malicious code in bioql PyPI...

5.7CVSS6.6AI score0.0023EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-48319

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01605EPSS
Exploits1References3
CVE
CVE
added 2025/09/02 11:30 a.m.9 views

CVE-2025-52551

CVE-2025-52551 concerns Copeland E2 Facility Management Systems, where a proprietary protocol permits unauthenticated file operations on any file in the file system. The CVSS-based assessment in the initial record indicates a critical impact (high confidentiality, integrity, and availability impa...

9.3CVSS6.5AI score0.00324EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.1 views

Malicious code in @zalastax/nolb-_e2 (npm)

The package @zalastax/nolb-e2 was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-9957 Malicious code in @zalastax/nolb-_e2 (npm)

The package @zalastax/nolb-e2 was found to contain malicious code...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/11 12:0 a.m.14 views

Securing Open RAN: a Survey of Cryptographic Challenges and Emerging Solutions for 5G

The advent of Open Radio Access Networks O-RAN introduces modularity and flexibility into 5G deployments but also surfaces novel security challenges across disaggregated interfaces. This literature review synthesizes recent research across thirteen academic and industry sources, examining...

6.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/27 12:20 a.m.5 views

CVE-2024-34035

An issue was discovered in O-RAN Near Realtime RIC H-Release. To trigger the crashing of the e2mgr, an adversary must flood the system with a significant quantity of E2 Subscription Requests originating from an xApp...

5.7CVSS5.5AI score0.0023EPSS
Exploits0References1
NVD
NVD
added 2025/02/25 3:15 p.m.6 views

CVE-2024-34035

An issue was discovered in O-RAN Near Realtime RIC H-Release. To trigger the crashing of the e2mgr, an adversary must flood the system with a significant quantity of E2 Subscription Requests originating from an xApp...

5.7CVSS0.0023EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/02/25 12:0 a.m.8 views

CVE-2024-34035

An issue was discovered in O-RAN Near Realtime RIC H-Release. To trigger the crashing of the e2mgr, an adversary must flood the system with a significant quantity of E2 Subscription Requests originating from an xApp...

0.0023EPSS
Exploits0References2
Rows per page
Query Builder