VYPR
Medium severity6.5NVD Advisory· Published Aug 22, 2025· Updated Apr 15, 2026

CVE-2025-55629

CVE-2025-55629

Description

Insecure permissions in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 allow attackers to arbitrarily change other users' passwords via manipulation of the userName value.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.