Home / exploitsPDF  

Yealink Configuration Encrypt Tool Static AES Key

Posted on 21 February 2024

A single, vendorwide, hardcoded AES key in the Yealink Configuration Encrypt Tool used to encrypt provisioning documents was leaked leading to a compromise of confidentiality of provisioning documents.

 

TOP