ГлавнаяУязвимости → CVE-2025-55630
7.3высокая

CVE-2025-55630

Описание

A discrepancy in the error message returned by the login function of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 when entering the wrong username and password allows attackers to enumerate existing accounts.

Затрагиваемое ПО
Reolink Smart 2k\+ plug-in wi-fi video doorbell with chime firmwareReolink Smart 2k\+ plug-in wi-fi video doorbell with chime
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://relieved-knuckle-264.notion.site/User-Enumeration-Vulnerability-23c43700364280b6a46ae6302818b77e?source=copy_link