The vulnerability of the `netserver recv_command` function in the Reolink RLC-410W IP camera’s microprogramming software allows a intruder to trigger a service failure.

🗓️ 01 Aug 2022 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 3 Views

Overflow in netserver recv_command on Reolink RLC-410W enables remote service failure.

Reporter	Title	Published	Views	Family All 10
CNNVD	Reolink RLC-410W 输入验证错误漏洞	26 Jan 202200:00	–	cnnvd
CNVD	Reolink RLC-410W netserver recv_command denial of service vulnerability	28 Jan 202200:00	–	cnvd
CVE	CVE-2022-21801	28 Jan 202219:10	–	cve
Cvelist	CVE-2022-21801	28 Jan 202219:10	–	cvelist
EUVD	EUVD-2022-26964	3 Oct 202520:07	–	euvd
NVD	CVE-2022-21801	28 Jan 202220:15	–	nvd
Prion	Denial of service	28 Jan 202220:15	–	prion
RedhatCVE	CVE-2022-21801	6 Feb 202501:02	–	redhatcve
Talos	Reolink RLC-410W netserver recv_command denial of service vulnerability	26 Jan 202200:00	–	talos
Vulnrichment	CVE-2022-21801	28 Jan 202219:10	–	vulnrichment

Vulners

Node

reolink reolink_rlc-410wMatch3.0.0.136_20121102

Source	Link
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2022012706
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-21801
talosintelligence	www.talosintelligence.com/vulnerability_reports/TALOS-2021-1450
web	www.web.nvd.nist.gov/view/vuln/detail

01 Aug 2022 00:00Current

7.4High risk

Vulners AI Score7.4

CVSS 27.8

CVSS 38.6

EPSS0.01071

netserver recv_command Reolink RLC-410W remote service failure integer overflow