← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-40407 — Actively Exploited: RLC-410W IP Camera (Reolink)

Reolink RLC-410W IP cameras contain an authenticated OS command injection vulnerability in the device network settings functionality.

CVE IDCVE-2021-40407
VendorReolink
ProductRLC-410W IP Camera
Vulnerability nameReolink RLC-410W IP Camera OS Command Injection Vulnerability
Date added2024-12-18
Remediation due2025-01-08
Known ransomware useUnknown
Required actionThe impacted product could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization if a current mitigation is unavailable.
DescriptionReolink RLC-410W IP cameras contain an authenticated OS command injection vulnerability in the device network settings functionality.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →