Reolink Smart 2K+ Wi-Fi Video Doorbell Session Management Vulnerability Leading to Denial-of-Service

Vulnerability

A denial-of-service vulnerability has been identified in the Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime, specifically in firmware version 3.0.0.4662_2503122283. The issue arises because the device manages user sessions system-wide, rather than on an individual account basis. This flaw could be exploited to exhaust system resources, causing a denial-of-service condition.

Impact

Exploitation of this vulnerability can lead to resource exhaustion, causing a denial-of-service condition on the affected device.

Added: Aug 22, 2025, 5:34 PM

Updated: Aug 22, 2025, 6:36 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

0.4

threat

6.4

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

0.4

threat

6.4

urgency

2.9

incentive

5.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Reolink Smart 2K+ Wi-Fi Video Doorbell Session Management Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating