Sip-T21\(P\)E2 Firmware CVE Vulnerabilities

Name: Sip-T21\(P\)E2 Firmware
Author: Yealink

By Yealink — 2 known vulnerabilities

Critical

High

Medium

Low

None

All Sip-T21\(P\)E2 Firmware CVEs

Recent Highest Score Oldest

CVE-2025-66737

4.3 medium

Yealink T21P_E2 Phone 52.84.0.15 is vulnerable to Directory Traversal. A remote normal privileged attacker can read arbitrary files via a crafted request result read function of the diagnostic component.

Dec 26, 2025

CVE-2025-66738

8.8 high

An issue in Yealink T21P_E2 Phone 52.84.0.15 allows a remote normal privileged attacker to execute arbitrary code via a crafted request the ping function of the diagnostic component.

Dec 26, 2025