CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-21134

A firmware update vulnerability exists in the "update" firmware checks functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to firmware update. An attacker can send a sequence of requests to trigger this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.2%

CVSS Severity

CVSS v3 Score 8.3

CVSS v2 Score 5.0

References

https://talosintelligence.com/vulnerability_reports/TALOS-2021-1447
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1447

Products affected by CVE-2022-21134

Reolink » Rlc-410w » Version: N/A

cpe:2.3:h:reolink:rlc-410w:-
Reolink » Rlc-410w Firmware » Version: 3.0.0.136_20121102

cpe:2.3:o:reolink:rlc-410w_firmware:3.0.0.136_20121102

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-21134

Products

Pricing

Contact Us