VYPR

IP1211 IP Phone

by Karel

CVEs (1)

  • CVE-2025-34023HigJun 20, 2025
    risk 0.55cvss epss 0.01

    A path traversal vulnerability exists in the Karel IP1211 IP Phone's web management panel. The /cgi-bin/cgiServer.exx endpoint fails to properly sanitize user input to the page parameter, allowing remote authenticated attackers to access arbitrary files on the underlying system…