CVE-2021-44354

Vulnerability

The vulnerability resides in the JSON command parser of cgiserver.cgi on Reolink RLC-410W firmware version v3.0.0.136_20121102. A specially-crafted HTTP request can trigger a denial of service condition, causing the device to reboot. The issue is due to improper input validation (CWE-20) in handling certain JSON commands intended for administrative reboot functionality [1].

Exploitation

An unauthenticated attacker can send a crafted HTTP request to the device over the network. No authentication or user interaction is required. The request exploits the JSON parser to kill the cgiserver.cgi process, leading to an immediate reboot [1].

Impact

Successful exploitation results in a denial of service, causing the camera to reboot. This disrupts surveillance and recording capabilities. The CVSS score of 8.6 (AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H) indicates high availability impact with no confidentiality or integrity loss [1].

Mitigation

As of the publication date (2022-04-14), no official patch or firmware update has been released by Reolink to address this vulnerability. Users should monitor vendor advisories for updates. No workarounds are documented. The device is not listed on CISA's Known Exploited Vulnerabilities (KEV) catalog [1].