Vulnerabilities (CVE)

Filtered by vendor Yealink Subscribe
Filtered by product Sip-t28p Firmware
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-33109 2 Ergophone, Yealink 4 Tiptel Ip 286, Tiptel Ip 286 Firmware, Sip-t28p and 1 more 2024-09-25 N/A 9.8 CRITICAL
Directory Traversal in the web interface of the Tiptel IP 286 with firmware version 2.61.13.10 allows attackers to overwrite arbitrary files on the phone via the Ringtone upload function.