2 matches found
CVE-2022-21236
An information disclosure vulnerability exists due to a web server misconfiguration in the Reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2022-21236
The CVE-2022-21236 issue affects Reolink RLC-410W (v3.0.0.136_20121102). A web server misconfiguration (nginx) exposes the TLS private key from the document root, enabling potential impersonation of the camera and, in some contexts, decryption of HTTPS traffic to steal an admin session token. Thi...