PT-2025-42530 · Reolink · Reolink Video Doorbell Wifi Db 566128M5Mp W

Published

2025-10-16

Updated

2025-10-16

CVE-2025-60855

CVSS v3.1

5.1

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N

Name of the Vulnerable Software and Affected Versions Reolink Video Doorbell WiFi DB 566128M5MP W (affected versions not specified)

Description The Reolink Video Doorbell WiFi DB 566128M5MP W does not properly validate firmware update signatures. This allows attackers to upload malicious firmware images, potentially leading to arbitrary code execution with root privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-77

Related Identifiers

CVE-2025-60855

Affected Products

Reolink Video Doorbell Wifi Db 566128M5Mp W

PT-2025-42530 · Reolink · Reolink Video Doorbell Wifi Db 566128M5Mp W

CVE-2025-60855

Weakness Enumeration

Related Identifiers

Affected Products

References · 5