2 matches found
CVE-2021-44397
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. rtmp=start param is not object. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2021-44397
The CVE-2021-44397 entry describes a denial-of-service in the cgiserver.cgi JSON command parser of Reolink RLC-410W, version 3.0.0.136_20121102. A crafted HTTP request can trigger an assert in the JSON parser when the cmd/param structure is not an object, potentially rebooting the device. The TAL...