CVE-2021-40407β€”Reolink RLC-410W IP Camera OS Command Injection Vulnerability

PUBLISHEDvulnerability record
2024-12-18 Β· last modified June 21, 2025

Metadata

CVE ID:
CVE-2021-40407
Project:
Reolink
Product:
RLC-410W IP Camera
Date Added:
2024-12-18
Due Date:
2025-01-08
Last Updated:
June 21, 2025

Vulnerability Name

Reolink RLC-410W IP Camera OS Command Injection Vulnerability

Description

Reolink RLC-410W IP cameras contain an authenticated OS command injection vulnerability in the device network settings functionality.

Known To Be Used in Ransomware Campaigns?

Ransomware Status:
Unknown

Action

The impacted product could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization if a current mitigation is unavailable.

Additional Notes

Related Weaknesses