Reolink P2P Cameras
CVE-2020-25173

7.8HIGH

Key Information:

Vendor: Reolink
Status: Rlc-4xx Series; Rlc-5xx Series; Rln-x10 Series
Vendor: CVE Published:; 26 January 2021

What is CVE-2020-25173?

An attacker with local network access can obtain a fixed cryptography key which may allow for further compromise of Reolink P2P cameras outside of local network access

Affected Version(s)

RLC-4XX series All versions

RLC-5XX series All versions

RLN-X10 series All versions

References

https://us-cert.cisa.gov/ics/advisories/icsa-21-019-02

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 26, 2021
Vulnerability Reserved
Sep 4, 2020

CVE-2020-25173 Data

JSON