CVE-2020-25169: Reolink P2P Cameras
First published: Wed Jan 20 2021(Updated: )
The affected Reolink P2P products do not sufficiently protect data transferred between the local device and Reolink servers. This can allow an attacker to access sensitive information, such as camera feeds.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Reolink Rln8-410 Firmware | ||
| Reolink Rln8-410 | ||
| Reolink Rlc-422 Firmware | ||
| Reolink Rlc-422 | ||
| Reolink Rlc-510a Firmware | ||
| Reolink Rlc-510a | ||
| Reolink Rlc-410 Firmware | ||
| Reolink Rlc-410 | ||
| Reolink Rlc-423s Firmware | ||
| Reolink Rlc-423s | ||
| Reolink Rlc-423 Firmware | ||
| Reolink Rlc-423 | ||
| Reolink Rlc-520a Firmware | ||
| Reolink Rlc-520a | ||
| Reolink RLC-4XX series | ||
| Reolink RLC-5XX series | ||
| Reolink RLN-X10 series |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-25169?
CVE-2020-25169 is a vulnerability that affects Reolink P2P products and allows attackers to access sensitive information, such as camera feeds, by exploiting the insufficient protection of data transferred between the local device and Reolink servers.
How does CVE-2020-25169 affect Reolink P2P products?
CVE-2020-25169 affects Reolink P2P products by compromising the protection of data transferred between the local device and Reolink servers, enabling attackers to gain access to sensitive information.
What is the severity of CVE-2020-25169?
CVE-2020-25169 has a severity rating of 7.5 (High).
Which Reolink P2P products are affected by CVE-2020-25169?
Reolink P2P products such as Reolink Rln8-410 Firmware, Reolink Rlc-422 Firmware, Reolink Rlc-510a Firmware, Reolink Rlc-410 Firmware, Reolink Rlc-423s Firmware, and Reolink Rlc-423 Firmware are affected by CVE-2020-25169.
Are all Reolink P2P products vulnerable to CVE-2020-25169?
No, not all Reolink P2P products are vulnerable to CVE-2020-25169. Some products like Reolink Rln8-410, Reolink Rlc-422, Reolink Rlc-510a, Reolink Rlc-410, Reolink Rlc-423s, and Reolink Rlc-423 are not vulnerable.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/description
- agent/first-publish-date
- agent/severity
- agent/references
- agent/softwarecombine
- agent/event
- agent/tags
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/reolink
- canonical/reolink rln8-410 firmware
- canonical/reolink rln8-410
- canonical/reolink rlc-422 firmware
- canonical/reolink rlc-422
- canonical/reolink rlc-510a firmware
- canonical/reolink rlc-510a
- canonical/reolink rlc-410 firmware
- canonical/reolink rlc-410
- canonical/reolink rlc-423s firmware
- canonical/reolink rlc-423s
- canonical/reolink rlc-423 firmware
- canonical/reolink rlc-423
- canonical/reolink rlc-520a firmware
- canonical/reolink rlc-520a
- canonical/reolink rlc-4xx series
- canonical/reolink rlc-5xx series
- canonical/reolink rln-x10 series