CVE-2025-66737
Yealink T21P_E2 Phone 52.84.0.15 is vulnerable to Directory Traversal. A remote normal privileged attacker can read arbitrary files via a cr
CVSS
4.3
Medium
EPSS
0.6%
p45
KEV
—
Exploit Today
14
0-100
Published: Dec 26, 2025 · Last modified: Jul 5, 2026 · CWE-23
0.6%EPSS · 30 days0.6%
2026-06-302026-07-16
Yealink T21P_E2 Phone 52.84.0.15 is vulnerable to Directory Traversal. A remote normal privileged attacker can read arbitrary files via a crafted request result read function of the diagnostic component.
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2026-149037.7 HIG60.0%
——18Path traversal in Ivanti Xtraction before version 2026.2.1 allows a remote authenticated attacker to read arbitrary files outside the web root.2dCVE-2026-561968.8 HIG57.4%
——17Relative path traversal in Windows Admin Center allows an authorized attacker to execute code over a network.2dCVE-2026-613437.2 HIG53.7%
——16LibreBooking's email template editor save action passes the submitted template name directly into the destination file path, allowing a remote attacker with administrator credentials to write an arbitrary file outside the template directory and execute code. Fixed in 5.1.0.8dCVE-2026-506638.8 HIG47.0%
——14Relative path traversal in Age of Empires II: Definitive Edition Game allows an unauthorized attacker to execute code over a network.2dCVE-2026-257078.8 HIG44.7%
——13A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be used by remote attackers supplying repositories to overwrite files on the system, leading to denial of service or privilege escalation.17dCVE-2026-274897.5 HIG44.4%
——13Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior to version 1.21.0, a path traversal vulnerability via symlink allows to read arbitrary files outside model or user-provided directory. This issue has been patched in version 1.21.0.2d