3 matches found
CVE-2022-21134
A firmware update vulnerability exists in the "update" firmware checks functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to firmware update. An attacker can send a sequence of requests to trigger this vulnerability...
CVE-2022-21134
A firmware update vulnerability exists in the "update" firmware checks functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to firmware update. An attacker can send a sequence of requests to trigger this vulnerability...
CVE-2022-21134
CVE-2022-21134 affects the Reolink RLC-410W firmware upgrade path. TALOS details a vulnerability in the firmware’s Upgrade API: the update process lacks cryptographic verification of the firmware image, allowing an attacker to trigger a firmware update via the Upgrade API, potentially delivering ...