Yealink Configuration Encrypt Tool Static AES Key
Posted on 21 February 2024
A single, vendorwide, hardcoded AES key in the Yealink Configuration Encrypt Tool used to encrypt provisioning documents was leaked leading to a compromise of confidentiality of provisioning documents.