ГлавнаяУязвимости → CVE-2025-55637
9.8критическая

CVE-2025-55637

Описание

Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 was discovered to contain a command injection vulnerability via the setddns_pip_system() function.

Затрагиваемое ПО
Reolink Smart 2k\+ plug-in wi-fi video doorbell with chime firmwareReolink Smart 2k\+ plug-in wi-fi video doorbell with chime
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://cwe.mitre.org/data/definitions/78.htmlhttps://relieved-knuckle-264.notion.site/Reolink-camera-command-injection-Ddns-username-23f437003642800f83aef6b07f914212?pvs=74