2 matches found
CVE-2021-44362
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. SetCloudSchedule param is not object. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2021-44362
CVE-2021-44362 affects Reolink RLC-410W (v3.0.0.136_20121102). The cgiserver.cgi JSON command parser mishandles certain JSON bodies, particularly where param is not an object, allowing a specially crafted HTTP request to trigger a reboot via the API. The issue is tied to the parsing path for the ...