CVE-2021-44399

Vulnerability

The vulnerability resides in the cgiserver.cgi JSON command parser of the reolink RLC-410W camera running firmware version v3.0.0.136_20121102. The GetPtzPreset parameter is not validated as an object, leading to improper input validation (CWE-20). A specially-crafted HTTP request can trigger a crash of the cgiserver.cgi process, resulting in a device reboot [1].

Exploitation

An attacker can exploit this vulnerability by sending a crafted HTTP request to the camera's cgiserver.cgi endpoint. No authentication is required (CVSSv3 PR:N), and the attack can be performed remotely over the network. The request causes the cgiserver.cgi process to terminate, which in turn triggers an automatic reboot of the device [1].

Impact

Successful exploitation results in a denial of service (DoS) condition, forcing the camera to reboot. The attack has no impact on confidentiality or integrity; the sole effect is a temporary loss of availability (CVSSv3 A:H). The device becomes unavailable until the reboot completes [1].

Mitigation

As of the publication date of this advisory, no official fix or workaround has been disclosed by the vendor. Users are advised to monitor the vendor's support channels for firmware updates that address this vulnerability. If no update is available, restricting network access to the camera's management interface may reduce exposure [1].