CVE-2024-48353 – Yealink Meeting Server Cryptographic Key Information Disclosure

11月 1, 2024
7:16 pm

CVE ID : CVE-2024-48353

Published : Nov. 1, 2024, 6:15 p.m. | 1 hour, 1 minute ago

Description : Yealink Meeting Server before V26.0.0.67 allows attackers to obtain static key information from a front-end JS file and decrypt the plaintext passwords based on the obtained key information.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-48353 – Yealink Meeting Server Cryptographic Key Information Disclosure

Elvescore.io

Recent Posts

CVE-2024-12962 – Code-Projects Job Recruitment SQL Injection Vulnerability

CVE-2024-54907 – TOTOLINK A3002R Remote Code Execution Vulnerability in boa FormWsc Handler

CVE-2024-12960 – Apache MCA 1.0 SQL Injection Vulnerability

CVE-2024-12961 – Apache MCA Portfolio Management System SQL Injection Vulnerability

CVE-2024-12908 – Delinea Secret Server Regular Expression Injection Vulnerability

CVE-2024-12958 – RPost MCA SQL Injection Vulnerability

CVE-2024-48353 – Yealink Meeting Server Cryptographic Key Information Disclosure

CVE-2024-48353 – Yealink Meeting Server Cryptographic Key Information Disclosure