THREATOPS
THREAT OPSCVEs › CVE-2021-27561

CVE-2021-27561 — Yealink Device Management Server-Side Request Forgery (SSRF) Vulnerability

CISA KEVExploited: confirmedYealink

Yealink Device Management contains a server-side request forgery (SSRF) vulnerability that allows for unauthenticated remote code execution.

Vulnerability details