CVE-2024-30939

April 25, 2024, 7:15 p.m.

None
No Score

Description

An issue discovered in Yealink VP59 Teams Editions with firmware version 91.15.0.118 allows a physically proximate attacker to gain control of an account via a flaw in the factory reset procedure.

Product(s) Impacted

Product Versions
Yealink VP59 Teams Editions
  • 91.15.0.118

Weaknesses

References

https://medium.com/%40deepsahu1/yealink-ip-phone-account-take-over-9bf9e7b847c0?source=friends_link&sk=b0d664dd5b3aad5b758e4934aca997ad

Tags

Date

  • Published: April 25, 2024, 7:15 p.m.
  • Last Modified: April 25, 2024, 7:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.