CVE-2025-52918 | Yealink YMCS prior 2025-05-26 OpenAPI authorization

June 22, 2025 Yanac

A vulnerability classified as problematic was found in Yealink YMCS. This vulnerability affects unknown code of the component OpenAPI. The manipulation leads to incorrect authorization.

This vulnerability was named CVE-2025-52918. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More

CVE-2025-52923 | Sangfor aTrust 2.4.10 ExecStartPre Command permission assignment (EUVD-2025-18829)
CVE-2025-52916 | Yealink YMCS RPS prior 2025-06-04 SN Verification Attempt Limits excessive authentication