CVE-2026-57473

MEDIUM

Reolink Home Hub < 3.3.0.456_26031911 - Use of Weak Credentials

Title source: rule
STIX 2.1

Description

A vulnerability exists in the netclient and factory services of Reolink Home Hub (versions prior to v3.3.0.456_26031911) due to the possibility of brute-force cracking the credentials. This issue could allow attackers on the same local network to intercept traffic between the Hub and associated cameras and compromise the credentials of connected cameras.

References (1)

Core 1
Core References

Scores

CVSS v4 5.8
EPSS 0.0014
EPSS Percentile 4.1%
CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-1391
Status published
Products (1)
Reolink/Home Hub < 3.3.0.456_26031911
Published Jun 26, 2026
Tracked Since Jun 26, 2026