PatchSiren cyber security CVE debrief
CVE-2026-12218 Yealink CVE debrief
A high-severity vulnerability, CVE-2026-12218, was detected in Yealink SIP-T46U 108.87.50.1. The vulnerability affects the function StartReportInformation of the file /api/inner/beforewifitest in the Web FastCGI Service component. The manipulation of the argument port results in a stack-based buffer overflow. Access to the local network is required for this attack. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
- Vendor
- Yealink
- Product
- SIP-T46U
- CVSS
- HIGH 7.3
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-15
- Original CVE updated
- 2026-06-15
- Advisory published
- 2026-06-15
- Advisory updated
- 2026-06-15
Who should care
Administrators and users of Yealink SIP-T46U 108.87.50.1, especially those with access to the local network, should be aware of this vulnerability and take necessary actions to mitigate it.
Technical summary
The vulnerability has a CVSS score of 7.3 and is classified as HIGH severity. It is caused by a stack-based buffer overflow in the StartReportInformation function of the /api/inner/beforewifitest file in the Web FastCGI Service component. The vulnerability can be exploited with local network access and has a public exploit available.
Defensive priority
High
Recommended defensive actions
- Apply patches or updates provided by the vendor as soon as possible.
- Restrict access to the local network to minimize the attack surface.
- Monitor for any suspicious activity related to the affected component.
Evidence notes
The CVE record was published and modified on 2026-06-15T06:16:22.673Z. The vulnerability details were obtained from the NVD and other sources.
Official resources
CVE-2026-12218 was published on 2026-06-15T06:16:22.673Z and modified on the same date.