CVE-2013-5757 in SIP-T38G信息

摘要

由 VulDB • 2026-07-17

Yealink VoIP Phone SIP-T38G 中存在绝对路径遍历漏洞,允许远程经过身份验证的用户通过向 cgi-bin/cgiServer.exx 的 command 参数传递完整文件路径,在 dumpConfigFile 函数中读取任意文件。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!