CVE-2019-14657
08.10.2019, 13:15
Yealink phones through 2019-08-04 have an issue with OpenVPN file upload. They execute tar as root to extract files, but do not validate the extraction directory. Creating a tar file with ../../../../ allows replacement of almost any file on a phone. This leads to password replacement and arbitrary code execution as root.
Vendor | Product | Version |
---|---|---|
yeahlink | vp59_firmware | 𝑥 ≤ 2019-08-04 |
yeahlink | t49g_firmware | 𝑥 ≤ 2019-08-04 |
yeahlink | t58v_firmware | 𝑥 ≤ 2019-08-04 |
𝑥
= Vulnerable software versions