An information disclosure vulnerability exists due to the hardcoded TLS key of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted man-in-the-middle attack can lead to a disclosure of sensitive information. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.
References
Link | Resource |
---|---|
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1448 | Broken Link Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: talos
Published: 2022-01-28T19:10:05
Updated: 2022-01-28T19:10:05
Reserved: 2022-01-12T00:00:00
Link: CVE-2022-21199
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-01-28T20:15:12.323
Modified: 2022-07-01T19:09:32.873
Link: CVE-2022-21199
JSON object: View
Redhat Information
No data.