CVE-2021-40407
Reolink RLC-410W IP Camera OS Command Injection Vulnerability
CVSS
—
No CVSS
EPSS
47.9%
p99
KEV
YES
Dec 18, 2024
Exploit Today
80
0-100
Published: — · Last modified: —
Product
Reolink / RLC-410W IP Camera
Vulnerability
Reolink RLC-410W IP Camera OS Command Injection Vulnerability
Added to KEV
Dec 18, 2024
Remediate by
Jan 8, 2025
Known ransomware use
No
Summary description
Reolink RLC-410W IP cameras contain an authenticated OS command injection vulnerability in the device network settings functionality.
Required action
The impacted product could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization if a current mitigation is unavailable.
Notes
https://reolink.com/product-eol/ ; https://reolink.com/download-center/ ; https://nvd.nist.gov/vuln/detail/CVE-2021-40407
No related CVEs by CWE or product.