An attacker with local network access can obtain a fixed cryptography key which may allow for further compromise of Reolink P2P cameras outside of local network access
References
| Link | Resource |
|---|---|
| https://us-cert.cisa.gov/ics/advisories/icsa-21-019-02 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
History
No history.
Information
Published : 2021-01-26 18:15
Updated : 2021-02-01 19:16
NVD link : CVE-2020-25173
Mitre link : CVE-2020-25173
JSON object : View
Products Affected
reolink
- rlc-422
- rlc-423s_firmware
- rlc-510a_firmware
- rlc-510a
- rlc-410_firmware
- rlc-410
- rlc-423s
- rlc-520a_firmware
- rlc-422_firmware
- rlc-423
- rlc-520a
- rlc-423_firmware
- rln8-410_firmware
- rln8-410
CWE
CWE-798
Use of Hard-coded Credentials