Medium severity5.0NVD Advisory· Published Jun 21, 2025· Updated Apr 15, 2026

CVE-2025-52918

Description

Yealink RPS before 2025-05-26 does not prevent OpenAPI access by frozen enterprise accounts, allowing unauthorized access to deactivated interfaces.

No patches discovered yet.

AI mechanics synthesis has not run for this CVE yet.

No linked articles in our index yet.