Impact Analysis

This vulnerability can allow an attacker on the same local network to gain unauthorized access to the credentials of connected cameras by brute-forcing weak credentials.

With compromised credentials, the attacker could intercept and monitor the traffic between the Reolink Home Hub and its cameras, potentially leading to privacy breaches and unauthorized surveillance.

Useful 0 Not Useful 0

Executive Summary

CVE-2026-57473 is a vulnerability found in the netclient and factory services of Reolink Home Hub devices running versions prior to v3.3.0.456_26031911. The issue arises from the use of weak credentials that can be brute-forced by an attacker.

An attacker located on the same local network can exploit this weakness to perform brute-force attacks on the credentials, potentially intercepting network traffic between the Hub and its connected cameras and compromising those camera credentials.

Useful 0 Not Useful 0

Detection Guidance

This vulnerability involves brute-force cracking of credentials in the netclient and factory services of Reolink Home Hub devices prior to version v3.3.0.456_26031911. Detection would involve monitoring for unusual authentication attempts or brute-force activity targeting these services on the local network.

Network administrators can look for repeated failed login attempts or suspicious traffic between the Hub and connected cameras. Commands to monitor network traffic or authentication logs on the local network could include using packet capture tools like tcpdump or Wireshark to analyze traffic for signs of interception or brute-force attempts.

• Use tcpdump to capture traffic on the local network segment where the Reolink Home Hub operates: tcpdump -i <interface> host <hub_ip>
• Use Wireshark to analyze captured traffic for repeated authentication attempts or unusual patterns.
• Check system or device logs for repeated failed login attempts to the netclient or factory services.

Useful 0 Not Useful 0

Mitigation Strategies

The primary mitigation step is to update the Reolink Home Hub firmware to version v3.3.0.456_26031911 or later, as this version addresses the vulnerability.

Additionally, ensure that the local network is secured to prevent unauthorized access, as the vulnerability requires an attacker to be on the same local network.

Consider monitoring network traffic for suspicious activity and enforcing strong credential policies on connected devices.

Useful 0 Not Useful 0

Compliance Impact

The vulnerability allows brute-force cracking of credentials and interception of network traffic between the Reolink Home Hub and connected cameras. This could lead to unauthorized access to sensitive data transmitted over the local network.

Such unauthorized access and potential data compromise may negatively impact compliance with data protection standards and regulations like GDPR and HIPAA, which require safeguarding personal and sensitive information against unauthorized access.

Mitigating this vulnerability by updating to the fixed version is essential to maintain compliance and reduce the risk of data breaches.

Useful 0 Not Useful 0