CNNVD-202510-2719 Information

CNNVD ID

CNNVD-202510-2719

Related CVE

CVE-2025-56802

• CNNVD Published: 2025-10-21

Description (Chinese)

Reolink desktop application是美国Reolink公司的一个安全摄像头监控软件。 Reolink desktop application存在安全漏洞，该漏洞源于使用硬编码和可预测的AES加密密钥加密用户配置文件，可能导致本地攻击者解密敏感数据。

Description (English)

Reolink desktop application is a security camera monitoring software for Reolink. There is a security loophole in Reolink desktop application, which stems from the use of hard-coding and predictable AES encryption keys to encrypt user profiles, which may lead local attackers to decrypt sensitive data.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Reolink

Published

2025-10-21

Last Modified

2026-02-24

References

https://shinycolumn.notion.site/reolink-aes-key https://github.com/shinyColumn/CVE-2025-56802 https://access.redhat.com/security/cve/cve-2025-56802