13 matches found
EUVD-2025-25602
Malicious code in bioql PyPI...
EUVD-2025-25603
Malicious code in bioql PyPI...
CVE-2025-55629
Insecure permissions in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 allow attackers to arbitrarily change other users' passwords via manipulation of the userName value...
CVE-2025-55631
Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 was discovered to manage users' sessions system wide instead of an account-by-account basis, potentially leading to a Denial of Service DoS via resource exhaustion. NOTE: the Supplier reports that the...
CVE-2025-55637
Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 was discovered to contain a command injection vulnerability via the setddnspipsystem function...
CVE-2025-55630
A discrepancy in the error message returned by the login function of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 when entering the wrong username and password allows attackers to enumerate existing accounts...
CVE-2025-55630
A discrepancy in the error message returned by the login function of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 when entering the wrong username and password allows attackers to enumerate existing accounts...
CVE-2025-55629
Insecure permissions in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 allow attackers to arbitrarily change other users' passwords via manipulation of the userName value...
CVE-2025-55629
Insecure permissions in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 allow attackers to arbitrarily change other users' passwords via manipulation of the userName value...
PT-2025-34463 · Reolink · Reolink Smart 2K+ Plug-In Wi-Fi Video Doorbell With Chime
Name of the Vulnerable Software and Affected Versions: Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime version 3.0.0.4662 2503122283 Description: The Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime contains a command injection vulnerability. The issue is located in the setddns...
PT-2025-34460 · Reolink · Reolink Smart 2K+ Plug-In Wi-Fi Video Doorbell
Name of the Vulnerable Software and Affected Versions: Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime version 3.0.0.4662 2503122283 Description: A discrepancy in the error message returned by the login function when providing incorrect credentials allows attackers to enumerate existing...
PT-2025-34457 · Reolink · Reolink Smart 2K+ Plug-In Wi-Fi Video Doorbell
Name of the Vulnerable Software and Affected Versions: Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime version 3.0.0.4662 2503122283 Description: The device suffers from an Insecure Direct Object Reference IDOR vulnerability. This allows unauthorized attackers to access Admin-only...
CVE-2025-55634
The vulnerability CVE-2025-55634 affects the Reolink Smart 2K+ Plug-in Wi‑Fi Video Doorbell with Chime (firmware v3.0.0.4662_2503122283). The root cause is incorrect access control in the RTMP server settings, enabling an unauthenticated attacker to cause a Denial of Service by initiating a large...