5 matches found
CVE-2021-40413
An incorrect default permission vulnerability exists in the cgiserver.cgi cgicheckability functionality of reolink RLC-410W v3.0.0.13620121102. The UpgradePrepare is the API that checks if a provided filename identifies a new version of the RLC-410W firmware. If the version is new, it would be...
CVE-2021-40413
An incorrect default permission vulnerability exists in the cgiserver.cgi cgicheckability functionality of reolink RLC-410W v3.0.0.13620121102. The UpgradePrepare is the API that checks if a provided filename identifies a new version of the RLC-410W firmware. If the version is new, it would be...
CVE-2021-40413
An incorrect default permission vulnerability exists in the cgiserver.cgi cgicheckability functionality of reolink RLC-410W v3.0.0.13620121102. The UpgradePrepare is the API that checks if a provided filename identifies a new version of the RLC-410W firmware. If the version is new, it would be...
CVE-2021-40413
CVE-2021-40413 affects Reolink RLC-410W v3.0.0.136_20121102. The vulnerability is in the cgiserver.cgi function cgi_check_ability, where many APIs (including privileged ones such as UpgradePrepare, Format, Get, etc.) do not have specific cases and fall back to a default permission of 7, allowing ...
CVE-2021-40413
An incorrect default permission vulnerability exists in the cgiserver.cgi cgicheckability functionality of reolink RLC-410W v3.0.0.13620121102. The UpgradePrepare is the API that checks if a provided filename identifies a new version of the RLC-410W firmware. If the version is new, it would be...