PT-2022-11237 · Reolink · Reolink Rlc-410W

Francesco Benvenuto

Published

2022-01-28

Updated

2022-06-15

CVE-2021-40414

CVSS v3.1

7.1

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Name of the Vulnerable Software and Affected Versions reolink RLC-410W version 3.0.0.136 20121102

Description An incorrect default permission issue exists in the cgiserver.cgi cgi check ability functionality. The SetMdAlarm API sets movement detection parameters, allowing the setting of sensitivity and ignored camera spaces for movement detection. Due to the lack of a specific case for the SetMdAlarm API in cgi check ability, user permission defaults to 7, giving non-administrative users the ability to change movement detection parameters.

Recommendations For reolink RLC-410W version 3.0.0.136 20121102, consider restricting access to the SetMdAlarm API to prevent non-administrative users from changing movement detection parameters until a patch is available. As a temporary workaround, disabling the cgi check ability functionality could minimize the risk of exploitation.

Exploit

Fix

Improper Access Control

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284CWE-276

Related Identifiers

CVE-2021-40414

Affected Products

Reolink Rlc-410W

PT-2022-11237 · Reolink · Reolink Rlc-410W

CVE-2021-40414

Weakness Enumeration

Related Identifiers

Affected Products

References · 4