Open Redirect Vulnerability in Reolink Product
CVE-2025-55625

6.3MEDIUM

Key Information:

Vendor: Reolink
Status: Reolink Application
Vendor: CVE Published:; 22 August 2025

What is CVE-2025-55625?

An open redirect vulnerability discovered in Reolink v4.54.0.4.20250526 enables attackers to exploit the application by redirecting users to harmful websites. This could occur through specially crafted URLs that bypass security measures, potentially leading to phishing attacks or unauthorized access to sensitive information. Users and administrators of the Reolink application should remain vigilant and apply necessary security patches to avoid potential threats.

References

https://cwe.mitre.org/data/definitions/601.html

https://relieved-knuckle-264.notion.site/Reolink-Deeplink...

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 22, 2025
Vulnerability Reserved
Aug 13, 2025

CVE-2025-55625 Data

JSON