CVE Catalog

CVE-2026-57473

MediumCVSS 5.8
Published: Updated: Translated: NVD NIST

Summary

A vulnerability in the netclient and factory services of Reolink Home Hub (versions prior to v3.3.0.456_26031911) allows brute-force credential cracking. Attackers on the same local network can intercept traffic between the Hub and cameras and compromise camera credentials.

Risk Assessment

The risk includes unauthorized access to cameras and interception of video streams within the local network, potentially leading to privacy breaches and security compromises.

Recommendation

Immediately update Reolink Home Hub to version v3.3.0.456_26031911 or later, enforce strong passwords, and monitor logs for brute-force attempts.

Original NVD description (English source)

A vulnerability exists in the netclient and factory services of Reolink Home Hub (versions prior to v3.3.0.456_26031911) due to the possibility of brute-force cracking the credentials. This issue could allow attackers on the same local network to intercept traffic between the Hub and associated cameras and compromise the credentials of connected cameras.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS