CNNVD-202508-2722 Information

CNNVD ID

CNNVD-202508-2722

Related CVE

CVE-2025-55620

• CNNVD Published: 2025-08-22

Description (Chinese)

Reolink App是美国Reolink公司的一款手机应用。 Reolink App v4.54.0.4.20250526版本存在安全漏洞，该漏洞源于valuateJavascript函数未正确处理输入，可能导致跨站脚本攻击。

Description (English)

Reolink App is a mobile phone application for Reolink in the United States. Version Reolink App v4.54.0.4.20250526 contains a security loophole, which stems from the incorrect handling of input in the Valuate Javascript function and may result in a cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Reolink

Published

2025-08-22

Last Modified

2026-02-24

References

https://relieved-knuckle-264.notion.site/Reolink-javascript-injection-qr-code-21a43700364280eaa76fd56a01b25410 https://access.redhat.com/security/cve/cve-2025-55620 https://nvd.nist.gov/vuln/detail/CVE-2025-55620

Patch

https://reolink.com/software-and-manual/