| ID | CVE-2021-27561 | ||||||
| Sažetak | Yealink Device Management (DM) 3.6.0.20 allows command injection as root via the /sm/api/v1/firewall/zone/services URI, without authentication. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | AV:N/AC:L/Au:N/C:C/I:C/A:C | ||||||
| Zadnje važnije ažuriranje | 10-11-2025 - 14:41 | ||||||
| Objavljeno | 15-10-2021 - 18:15 |
