3 matches found
CVE-2021-40415
creationtimestamp| type| source ---|---|--- 2022-01-28 22:22:11+00:00| seen| https://t.me/cibsecurity/36487...
CVE-2021-40415
An incorrect default permission vulnerability exists in the cgiserver.cgi cgicheckability functionality of reolink RLC-410W v3.0.0.13620121102. In cgicheckability the Format API does not have a specific case, the user permission will default to 7. This will give non-administrative users the...
CVE-2021-40415
CVE-2021-40415 concerns the Reolink RLC-410W (v3.0.0.136_20121102). The issue resides in the cgiserver.cgi function cgi_check_ability: several APIs (including most sensitive ones) have no explicit case, causing a default permission value of 7 to be applied. This allows a non-administrative (authe...