CVE-2026-57473
MEDIUMReolink Home Hub < 3.3.0.456_26031911 - Use of Weak Credentials
Title source: ruleDescription
A vulnerability exists in the netclient and factory services of Reolink Home Hub (versions prior to v3.3.0.456_26031911) due to the possibility of brute-force cracking the credentials. This issue could allow attackers on the same local network to intercept traffic between the Hub and associated cameras and compromise the credentials of connected cameras.
References (1)
Core 1
Core References
Third Party Advisory third-party-advisory
https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2026-57473
Scores
CVSS v4
5.8
EPSS
0.0014
EPSS Percentile
4.1%
CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-1391
Status
published
Products (1)
Reolink/Home Hub
< 3.3.0.456_26031911
Published
Jun 26, 2026
Tracked Since
Jun 26, 2026