CVE-2026-12218: Stack-based Buffer Overflow in Yealink SIP-T46U
A vulnerability was detected in Yealink SIP-T46U 108.87.50.1. The affected element is the function StartReportInformation of the file /api/inner/beforewifitest of the component Web FastCGI Service. The manipulation of the argument port results in stack-based buffer overflow. Access to the local network is required for this attack. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
AI Analysis
Technical Summary
This vulnerability affects Yealink SIP-T46U firmware version 108.87.50.1. The StartReportInformation function in the Web FastCGI Service improperly handles the port argument, leading to a stack-based buffer overflow. An attacker with local network access can exploit this flaw to potentially execute arbitrary code or cause a denial of service. The CVSS 4.0 base score is 8.6, reflecting high impact with low attack complexity but requiring local access and privileges. No official fix or vendor advisory has been published, and the exploit is publicly available.
Potential Impact
Successful exploitation can lead to arbitrary code execution or denial of service on the affected device. The vulnerability requires local network access and some privileges, limiting remote exploitation. The high CVSS score indicates significant potential impact on confidentiality, integrity, and availability of the device.
Mitigation Recommendations
No official patch or remediation is currently available from the vendor. Since the exploit requires local network access, restricting network access to the device and isolating it from untrusted networks may reduce risk. Monitor for updates from Yealink for any forthcoming patches or advisories. Avoid exposing the device to untrusted local networks until a fix is released.
CVE-2026-12218: Stack-based Buffer Overflow in Yealink SIP-T46U
Description
A vulnerability was detected in Yealink SIP-T46U 108.87.50.1. The affected element is the function StartReportInformation of the file /api/inner/beforewifitest of the component Web FastCGI Service. The manipulation of the argument port results in stack-based buffer overflow. Access to the local network is required for this attack. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS v4.0
Score 8.6high
Affected software
cpe:2.3:a:yealink:sip-t46u:*:*:*:*:*:*:*:*AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability affects Yealink SIP-T46U firmware version 108.87.50.1. The StartReportInformation function in the Web FastCGI Service improperly handles the port argument, leading to a stack-based buffer overflow. An attacker with local network access can exploit this flaw to potentially execute arbitrary code or cause a denial of service. The CVSS 4.0 base score is 8.6, reflecting high impact with low attack complexity but requiring local access and privileges. No official fix or vendor advisory has been published, and the exploit is publicly available.
Potential Impact
Successful exploitation can lead to arbitrary code execution or denial of service on the affected device. The vulnerability requires local network access and some privileges, limiting remote exploitation. The high CVSS score indicates significant potential impact on confidentiality, integrity, and availability of the device.
Mitigation Recommendations
No official patch or remediation is currently available from the vendor. Since the exploit requires local network access, restricting network access to the device and isolating it from untrusted networks may reduce risk. Monitor for updates from Yealink for any forthcoming patches or advisories. Avoid exposing the device to untrusted local networks until a fix is released.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-06-14T13:54:11.247Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a2f96421cccde5f260cd674
Added to database: 6/15/2026, 6:05:54 AM
Last enriched: 6/15/2026, 6:21:00 AM
Last updated: 6/15/2026, 10:08:36 AM
Views: 12
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.