RSS   Vulnerabilities for 'C1 pro firmware'   RSS

2019-04-08
 
CVE-2019-11001

CWE-78
 

 
On Reolink RLC-410W, C1 Pro, C2 Pro, RLC-422W, and RLC-511W devices through 1.0.227, an authenticated admin can use the "TestEmail" functionality to inject and run OS commands as root, as demonstrated by shell metacharacters in the addr1 field.

 

 >>> Vendor: Reolink 5 Products
C1 pro firmware
C2 pro firmware
Rlc-410w firmware
Rlc-422w firmware
Rlc-511w firmware


Copyright 2024, cxsecurity.com

 

Back to Top