CVE-2021-40407

high-risk
Published 2022-01-28

An OS command injection vulnerability exists in the device network settings functionality of reolink RLC-410W v3.0.0.136_20121102. At [1] or [2], based on DDNS type, the ddns->domain variable, that has the value of the domain parameter provided through the SetDdns API, is not validated properly. This would lead to an OS command injection. An attacker can send an HTTP request to trigger this vulnerability.

Do I need to act?

!
32.6% chance of exploitation in next 30 days
EPSS score — higher than 67% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.2/10 High
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Reolink

References (3)

Exploit https://talosintelligence.com/vulnerability_reports/TALOS-2021-1424
Exploit https://talosintelligence.com/vulnerability_reports/TALOS-2021-1424
US Government Resource https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-...
54
/ 100
high-risk
Severity 26/34 · High
Exploitability 23/34 · High
Exposure 5/34 · Minimal