Reolink Video Doorbell Wi-Fi Plaintext DDNS Credentials Vulnerability

A vulnerability exists in the Reolink Video Doorbell Wi-Fi model DB_566128M5MP_W, which stores and transmits Dynamic DNS (DDNS) credentials in plaintext within its configuration and update scripts. This flaw allows attackers to intercept or extract sensitive information, potentially leading to credential theft, account takeover, and unauthorized modification of DNS entries. The issue arises from the absence of encryption or hashing for sensitive data, leaving DDNS usernames and passwords exposed during transmission and in firmware scripts.

Impact

Exploitation of this vulnerability could result in the compromise of DDNS credentials, allowing for unauthorized access to user accounts and the ability to modify DDNS settings. Such actions could disrupt device functionality or facilitate phishing attacks by redirecting traffic through malicious channels.

Remediation

Users are advised to avoid using DDNS features until secure credential handling is implemented and to revoke and rotate any DDNS credentials that were previously configured. The vendor should enhance security by encrypting stored credentials, adopting token-based authentication for DDNS updates, and conducting a comprehensive audit of firmware to ensure sensitive data is handled securely.