Learn about CVE-2021-44379, a denial of service vulnerability in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102, with a high impact and a CVSS base score of 8.6.
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.136_20121102, allowing an attacker to trigger a reboot by sending a specially-crafted HTTP request.
Understanding CVE-2021-44379
This CVE involves a denial of service vulnerability with a high impact.
What is CVE-2021-44379?
The vulnerability exists in the cgiserver.cgi JSON command parser of reolink RLC-410W v3.0.0.136_20121102, where a specific HTTP request can cause a reboot due to an improper handling of the command.
The Impact of CVE-2021-44379
The vulnerability has a base score of 8.6 (High) on the CVSSv3.0 scale, indicating a severe impact on the availability of the affected system, requiring no user interaction.
Technical Details of CVE-2021-44379
This section provides detailed technical information about the CVE.
Vulnerability Description
The vulnerability in the cgiserver.cgi JSON command parser of reolink RLC-410W v3.0.0.136_20121102 allows an attacker to instigate a denial of service attack by sending a crafted HTTP request that triggers a reboot due to the mishandling of input.
Affected Systems and Versions
Exploitation Mechanism
Mitigation and Prevention
To address CVE-2021-44379, follow these mitigation steps:
Immediate Steps to Take
Long-Term Security Practices
Patching and Updates