Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
On Reolink RLC-410W, C1 Pro, C2 Pro, RLC-422W, and RLC-511W devices through 1.0.227, an authenticated admin can use the "TestEmail" functionality to inject and run OS commands as root, as demonstrated by shell metacharacters in the addr1 field.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款Reolink Digital Technology产品操作系统命令注入漏洞
Vulnerability Description
Reolink Digital Technology RLC-410W等都是中国香港Reolink Digital Technology公司的一款IP摄像头。 多款Reolink产品中存在安全漏洞。攻击者借助‘TestEmail’功能利用该漏洞注入并以root权限执行操作系统命令。以下产品及版本受到影响:Reolink RLC-410W 1.0.227及之前版本;C1 Pro 1.0.227及之前版本;C2 Pro 1.0.227及之前版本;RLC-422W 1.0.227及之前版本;RLC-511W 1
CVSS Information
N/A
Vulnerability Type
N/A