CVSS: 7.7EPSS: 0%CPEs: 2EXPL: 1CVE-2021-40405
https://notcve.org/view.php?id=CVE-2021-40405
14 Apr 2022 — A denial of service vulnerability exists in the cgiserver.cgi Upgrade API functionality of Reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. An attacker can send an HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de denegación de servicio en la funcionalidad cgiserver.cgi Upgrade API de Reolink RLC-410W versión v3.0.0.136_20121102. Una petición HTTP especialmente diseñada puede conllevar a un reinicio. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1422 • CWE-284: Improper Access Control CWE-404: Improper Resource Shutdown or Release •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 1CVE-2021-44419
https://notcve.org/view.php?id=CVE-2021-44419
28 Jan 2022 — A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. GetMdAlarm param is not object. An attacker can send an HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de denegación de servicio en la funcionalidad JSON command parser del archivo cgiserver.cgi de reolink RLC-410W versión v3.0.0.136_20121102. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1421 • CWE-20: Improper Input Validation •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 1CVE-2021-44418
https://notcve.org/view.php?id=CVE-2021-44418
28 Jan 2022 — A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. GetMdState param is not object. An attacker can send an HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de denegación de servicio en la funcionalidad JSON command parser del archivo cgiserver.cgi de reolink RLC-410W versión v3.0.0.136_20121102. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1421 • CWE-20: Improper Input Validation •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 1CVE-2021-44417
https://notcve.org/view.php?id=CVE-2021-44417
28 Jan 2022 — A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. GetAlarm param is not object. An attacker can send an HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de denegación de servicio en la funcionalidad JSON command parser del archivo cgiserver.cgi de reolink RLC-410W versión v3.0.0.136_20121102. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1421 • CWE-20: Improper Input Validation •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 1CVE-2021-44416
https://notcve.org/view.php?id=CVE-2021-44416
28 Jan 2022 — A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. Disconnect param is not object. An attacker can send an HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de denegación de servicio en la funcionalidad JSON command parser del archivo cgiserver.cgi de reolink RLC-410W versión v3.0.0.136_20121102. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1421 • CWE-20: Improper Input Validation •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 1CVE-2021-44415
https://notcve.org/view.php?id=CVE-2021-44415
28 Jan 2022 — A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. ModifyUser param is not object. An attacker can send an HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de denegación de servicio en la funcionalidad JSON command parser del archivo cgiserver.cgi de reolink RLC-410W versión v3.0.0.136_20121102. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1421 • CWE-20: Improper Input Validation •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 1CVE-2021-44414
https://notcve.org/view.php?id=CVE-2021-44414
28 Jan 2022 — A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. DelUser param is not object. An attacker can send an HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de denegación de servicio en la funcionalidad JSON command parser del archivo cgiserver.cgi de reolink RLC-410W versión v3.0.0.136_20121102. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1421 • CWE-20: Improper Input Validation •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 1CVE-2021-44413
https://notcve.org/view.php?id=CVE-2021-44413
28 Jan 2022 — A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. AddUser param is not object. An attacker can send an HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de denegación de servicio en la funcionalidad JSON command parser del archivo cgiserver.cgi de reolink RLC-410W versión v3.0.0.136_20121102. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1421 • CWE-20: Improper Input Validation •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 1CVE-2021-44412
https://notcve.org/view.php?id=CVE-2021-44412
28 Jan 2022 — A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. GetRec param is not object. An attacker can send an HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de denegación de servicio en la funcionalidad JSON command parser del archivo cgiserver.cgi de reolink RLC-410W versión v3.0.0.136_20121102. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1421 • CWE-20: Improper Input Validation •
CVSS: 8.6EPSS: 0%CPEs: 2EXPL: 1CVE-2021-44407
https://notcve.org/view.php?id=CVE-2021-44407
28 Jan 2022 — A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. TestEmail param is not object. An attacker can send an HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de denegación de servicio en la funcionalidad JSON command parser del archivo cgiserver.cgi de reolink RLC-410W versión v3.0.0.136_20121102. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1421 • CWE-20: Improper Input Validation •