CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A denial of service vulnerability exists in the cgiserver.cgi API command parser functionality of Reolink RLC-410W v3.0.0.13620121102. A specially-crafted series of HTTP requests can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

7.8CVSS6.7AI score0.01339EPSS

Exploits1

OSV•added 2022/04/14 8:15 p.m.•4 views

CVE-2021-44357

Multiple denial of service vulnerabilities exist in the cgiserver.cgi JSON command parser functionality of Reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. An attacker can send an HTTP request to trigger this vulnerability...

7.5CVSS7.3AI score0.0172EPSS

Exploits1References1

NVD•added 2022/04/14 8:15 p.m.•24 views

CVE-2021-44366

8.6CVSS0.0172EPSS

Exploits1References1

Cvelist•added 2022/04/14 7:56 p.m.•13 views

CVE-2021-44394

8.6CVSS7.8AI score0.0172EPSS

Exploits1References1

CVE•added 2022/04/14 7:56 p.m.•48 views

CVE-2021-44394

The CVE-2021-44394 entry affects Reolink RLC-410W (v3.0.0.136_20121102) where the cgiserver.cgi JSON command parser can crash the device, causing a reboot via specially crafted HTTP requests. Connected sources (TalOS) describe the vulnerability as a denial of service in the JSON command parsing p...

8.6CVSS7.5AI score0.0172EPSS

Exploits1References1Affected Software1

CVE•added 2022/04/14 7:56 p.m.•52 views

CVE-2021-44357

Summary: CVE-2021-44357 pertains to multiple denial-of-service vulnerabilities in the cgiserver.cgi JSON command parser of Reolink RLC-410W (v3.0.0.136_20121102). The TALOS analysis describes that the JSON parser and its param handling assume objects, and receiving non-object JSON (e.g., an empty...

8.6CVSS7.5AI score0.0172EPSS

Exploits1References1Affected Software1

NVD•added 2022/01/28 10:15 p.m.•13 views

CVE-2021-44416

A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. Disconnect param is not object. An attacker can send an HTTP request to trigger this vulnerability...

8.6CVSS0.01207EPSS

Exploits1References1

OSV•added 2022/01/28 10:15 p.m.•3 views

CVE-2021-44410

A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. UpgradePrepare param is not object. An attacker can send an HTTP request to trigger this vulnerability...

7.7CVSS7.3AI score0.01207EPSS

Exploits1References1

OSV•added 2022/01/28 10:15 p.m.•14 views

CVE-2021-44407

A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. TestEmail param is not object. An attacker can send an HTTP request to trigger this vulnerability...

7.7CVSS7.2AI score0.01207EPSS

Exploits1References1

OSV•added 2022/01/28 10:15 p.m.•2 views

CVE-2021-44400

A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. GetPtzPatrol param is not object. An attacker can send an HTTP request to trigger this vulnerability...

7.7CVSS7.2AI score0.01207EPSS

Exploits1References1

OSV•added 2022/01/28 10:15 p.m.•4 views

CVE-2021-44398

A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. rtmp=stop param is not object. An attacker can send an HTTP request to trigger this vulnerability...

7.7CVSS7.2AI score0.01207EPSS

Exploits1References1

OSV•added 2022/01/28 10:15 p.m.•4 views

CVE-2021-44395

A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. GetMask param is not object. An attacker can send an HTTP request to trigger this vulnerability...

7.7CVSS5.8AI score0.01207EPSS

Exploits1References1

NVD•added 2022/01/28 10:15 p.m.•13 views

CVE-2021-44400

A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. GetPtzPatrol param is not object. An attacker can send an HTTP request to trigger this vulnerability...

8.6CVSS0.01207EPSS

Exploits1References1

NVD•added 2022/01/28 10:15 p.m.•10 views

CVE-2021-44411

A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. Search param is not object. An attacker can send an HTTP request to trigger this vulnerability...

8.6CVSS0.01207EPSS

Exploits1References1

NVD•added 2022/01/28 10:15 p.m.•10 views

CVE-2021-44392

A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. GetImage param is not object. An attacker can send an HTTP request to trigger this vulnerability...

8.6CVSS0.01207EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by