CVE List

CVE-2025-66737

Yealink T21P_E2 Phone 52.84.0.15 is vulnerable to Directory Traversal. A remote normal privileged attacker can read arbitrary files via a crafted request result read function of the diagnostic component.

Published December 26, 2025.

Affected software

Get alerts for Yealink Sip-t21\(p\)e2 Firmware

Reference links