Lucene search
TalosCVELIST:CVE-2021-40419HistoryJan 28, 2022 - 7:10 p.m.
CVE-2021-40419
2022-01-2819:10:07
CWE-489
talos
www.cve.org
1
firmware update
vulnerability
reolink rlc-410w.
CVSS3
10
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS
0.001
Percentile
51.3%
A firmware update vulnerability exists in the ‘factory’ binary of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted series of network requests can lead to arbitrary firmware update. An attacker can send a sequence of requests to trigger this vulnerability.
Related
cnvd
cnvd
Reolink Rlc-410W Access Control Error Vulnerability
2022-01-28 00:00:00
talos
talos
Reolink RLC-410W "factory" binary firmware update vulnerability
2022-01-26 00:00:00
cve
cve
CVE-2021-40419
2022-01-28 20:15:12
prion
prion
Design/Logic Flaw
2022-01-28 20:15:00
nvd
nvd
CVE-2021-40419
2022-01-28 20:15:12
CVSS3
10
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS
0.001
Percentile
51.3%
Related for CVELIST:CVE-2021-40419