10 matches found
EUVD-2025-25597
Malicious code in bioql PyPI...
CVE-2025-55631
Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 was discovered to manage users' sessions system wide instead of an account-by-account basis, potentially leading to a Denial of Service DoS via resource exhaustion. NOTE: the Supplier reports that the...
CVE-2025-55634
Incorrect access control in the RTMP server settings of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 allows unauthorized attackers to cause a Denial of Service DoS via initiating a large number of simultaneous ffmpeg-based stream pushes...
CVE-2025-55627
Insufficient privilege verification in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 allows authenticated attackers to create accounts with elevated privileges...
CVE-2025-55629
CVE-2025-55629 affects Reolink Smart 2K+ Plug-in Wi‑Fi Video Doorbell with Chime, firmware v3.0.0.4662_2503122283. The vulnerability stems from insecure permissions that let an attacker manipulate the userName value to arbitrarily change other users’ passwords. Product-specific details in multipl...
PT-2025-34461 · Reolink · Reolink Smart 2K+ Plug-In Wi-Fi Video Doorbell
Name of the Vulnerable Software and Affected Versions: Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime firmware version 3.0.0.4662 2503122283 Description: The device manages users' sessions system wide instead of an account-by-account basis, potentially leading to a Denial of Service Do...
CVE-2025-55630
A discrepancy in the error message returned by the login function of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 when entering the wrong username and password allows attackers to enumerate existing accounts...
CVE-2025-55630
A discrepancy in the error message returned by the login function of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 when entering the wrong username and password allows attackers to enumerate existing accounts...
CVE-2025-55631
Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 was discovered to manage users' sessions system wide instead of an account-by-account basis, potentially leading to a Denial of Service DoS via resource exhaustion. NOTE: the Supplier reports that the...
CVE-2025-55631
Affected product: Reolink Smart 2K+ Plug-in Wi‑Fi Video Doorbell with Chime (firmware 3.0.0.4662_2503122283). Root cause: sessions are managed system-wide rather than per-account, enabling a potential Denial of Service via resource exhaustion. Impact: DoS possibility; CVSS in documents indicates ...