Yeahlink Vp59 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Yeahlink Vp59 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2019-14656 — CVSS 8.8 (high): Yealink phones through 2019-08-04 do not properly check user roles in POST requests. Consequently, the default User account (with a…
CVE-2019-14657 — CVSS 8.8 (high): Yealink phones through 2019-08-04 have an issue with OpenVPN file upload. They execute tar as root to extract files, but do not validate…