Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An OS command injection vulnerability exists in the device network settings functionality of reolink RLC-410W v3.0.0.136_20121102. At [6] the dns_data->dns2 variable, that has the value of the dns2 parameter provided through the SetLocalLink API, is not validated properly. This would lead to an OS command injection.
CVSS Information
N/A
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Reolink Rlc-410W 操作系统命令注入漏洞
Vulnerability Description
Reolink Rlc-410W是中国Reolink公司的一款 Wifi 安全摄像头。 Reolink RLC-410W v3.0.0.136_20121102 版本的设备网络设置功能存在操作系统命令注入漏洞,一个特别制作的HTTP请求可以导致任意命令的执行。攻击者可以通过发送HTTP请求来触发该漏洞。
CVSS Information
N/A
Vulnerability Type
N/A