Reolink Rlc-410W Firmware vulnerabilities
88 known vulnerabilities affecting reolink/rlc-410w_firmware.
Total CVEs
88
CISA KEV
2
actively exploited
Public exploits
0
Exploited in wild
2
Severity breakdown
CRITICAL3HIGH81MEDIUM4
Vulnerabilities
Page 4 of 5
CVE-2021-44360P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44360 [HIGH] CWE-20 CVE-2021-44360: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetNorm param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44372P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44372 [HIGH] CWE-20 CVE-2021-44372: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetLocalLink param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44369P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44369 [HIGH] CWE-20 CVE-2021-44369: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetNtp param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44379P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44379 [HIGH] CWE-20 CVE-2021-44379: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetAutoMaint param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44383P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44383 [HIGH] CWE-20 CVE-2021-44383: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetAutoUpgrade param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44359P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44359 [HIGH] CWE-20 CVE-2021-44359: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetCrop param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44361P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44361 [HIGH] CWE-20 CVE-2021-44361: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. Set3G param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44382P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44382 [HIGH] CWE-20 CVE-2021-44382: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot.SetIrLights param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44377P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44377 [HIGH] CWE-20 CVE-2021-44377: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetImage param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44381P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44381 [HIGH] CWE-20 CVE-2021-44381: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetPowerLed param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44362P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44362 [HIGH] CWE-20 CVE-2021-44362: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetCloudSchedule param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44374P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44374 [HIGH] CWE-20 CVE-2021-44374: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetMask param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44384P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44384 [HIGH] CWE-20 CVE-2021-44384: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetPtzTattern param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44371P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44371 [HIGH] CWE-20 CVE-2021-44371: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetEmail param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44378P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44378 [HIGH] CWE-20 CVE-2021-44378: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetEnc param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44376P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44376 [HIGH] CWE-20 CVE-2021-44376: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetIsp param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44358P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44358 [HIGH] CWE-20 CVE-2021-44358: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetRec param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44364P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44364 [HIGH] CWE-20 CVE-2021-44364: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetWifi param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44367P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44367 [HIGH] CWE-20 CVE-2021-44367: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetUpnp param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2021-44370P3HIGHCVSS 7.7v3.0.0.136_201211022022-01-28
CVE-2021-44370 [HIGH] CWE-20 CVE-2021-44370: A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of r
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted HTTP request can lead to a reboot. SetFtp param is not object. An attacker can send an HTTP request to trigger this vulnerability.
nvd