The affected Reolink P2P products do not sufficiently protect data transferred between the local device and Reolink servers. This can allow an attacker to access sensitive information, such as camera feeds.
References
| Link | Resource |
|---|---|
| https://us-cert.cisa.gov/ics/advisories/icsa-21-019-02 | Third Party Advisory US Government Resource |
Advertisement
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Information
Published : 2021-01-26 10:15
Updated : 2021-02-01 09:35
NVD link : CVE-2020-25169
Mitre link : CVE-2020-25169
JSON object : View
CWE
CWE-319
Cleartext Transmission of Sensitive Information
Advertisement
Products Affected
reolink
- rlc-410_firmware
- rln8-410
- rlc-423s_firmware
- rlc-510a
- rlc-423s
- rlc-410
- rln8-410_firmware
- rlc-422
- rlc-510a_firmware
- rlc-520a
- rlc-423
- rlc-423_firmware
- rlc-422_firmware
- rlc-520a_firmware