How severe is CVE-2022-21217?

CVE-2022-21217 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2022-21217

Name: rlc-410w
Author: reolink

9.8CRITICAL

An out-of-bounds write vulnerability exists in the device TestEmail functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted network request can lead to an out-of-bounds write. An at

Published: 1/28/2022Updated: 11/21/2024

Description

An out-of-bounds write vulnerability exists in the device TestEmail functionality of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted network request can lead to an out-of-bounds write. An attacker can send an HTTP request to trigger this vulnerability.

AI AnalysisPowered by AI

Affected Products

reolinkrlc-410w_firmware

3.0.0.136_20121102

reolinkrlc-410w

References

https://talosintelligence.com/vulnerability_reports/TALOS-2021-1445
Broken LinkThird Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1445
Broken LinkThird Party Advisory