Every CVE whose affected-product data names Yealink Sip-t38g, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2013-5755 — CVSS 10.0 (critical): config/.htpasswd in Yealink IP Phone SIP-T38G has a hardcoded password of (1) user (s7C9Cx.rLsWFA) for the user account, (2) admin…
CVE-2013-5758 — CVSS 9.0 (critical): cgi-bin/cgiServer.exx in Yealink VoIP Phone SIP-T38G allows remote authenticated users to execute arbitrary commands by calling the system…
CVE-2013-5756 — CVSS 4.0 (medium): Directory traversal vulnerability in Yealink VoIP Phone SIP-T38G allows remote authenticated users to read arbitrary files via a .. (dot…
CVE-2013-5757 — CVSS 4.0 (medium): Absolute path traversal vulnerability in Yealink VoIP Phone SIP-T38G allows remote authenticated users to read arbitrary files via a full…