26 matches found
CVE-2025-52919
In Yealink RPS before 2025-05-26, the certificate upload function does not properly validate certificate content, potentially allowing invalid certificates to be uploaded...
CVE-2025-52917
The Yealink RPS API before 2025-05-26 lacks rate limiting, potentially enabling information disclosure via excessive requests...
Yealink YMCS RPS API 安全漏洞
Yealink YMCS RPS API is a device interface from China Yealink Yealink. A security vulnerability exists in the Yealink YMCS RPS API version prior to 2025-05-26, which stems from a lack of rate limiting and could lead to information disclosure...
CVE-2025-52916
Yealink RPS before 2025-06-04 lacks SN verification attempt limits, enabling brute-force enumeration last five digits...
CVE-2025-52917
The Yealink RPS API before 2025-05-26 lacks rate limiting, potentially enabling information disclosure via excessive requests...
PT-2025-26527 · Yealink · Yealink Ymcs Rps
Name of the Vulnerable Software and Affected Versions: Yealink YMCS RPS versions prior to 2025-06-04 Description: The issue is related to the lack of SN verification attempt limits, which enables brute-force enumeration of the last five digits. Recommendations: For versions prior to 2025-06-04,...