Lucene search
TalosCVELIST:CVE-2022-21134HistoryJan 28, 2022 - 7:10 p.m.
CVE-2022-21134
2022-01-2819:10:06
CWE-347
talos
www.cve.org
2
firmware update
vulnerability
reolink rlc-410w
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
EPSS
0.002
Percentile
56.0%
A firmware update vulnerability exists in the "update" firmware checks functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to firmware update. An attacker can send a sequence of requests to trigger this vulnerability.
Related
nvd
nvd
CVE-2022-21134
2022-01-28 20:15:12
cnvd
cnvd
Reolink RLC-410W Data Forgery Issue Vulnerability
2022-01-28 00:00:00
prion
prion
Design/Logic Flaw
2022-01-28 20:15:00
talos
talos
Reolink RLC-410W "update" firmware checks firmware update vulnerability
2022-01-26 00:00:00
cve
cve
CVE-2022-21134
2022-01-28 20:15:12
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
EPSS
0.002
Percentile
56.0%
Related for CVELIST:CVE-2022-21134