CVE-2026-57473
MediumCVSS 5.8Summary
A vulnerability in the netclient and factory services of Reolink Home Hub (versions prior to v3.3.0.456_26031911) allows brute-force credential cracking. Attackers on the same local network can intercept traffic between the Hub and cameras and compromise camera credentials.
Risk Assessment
The risk includes unauthorized access to cameras and interception of video streams within the local network, potentially leading to privacy breaches and security compromises.
Recommendation
Immediately update Reolink Home Hub to version v3.3.0.456_26031911 or later, enforce strong passwords, and monitor logs for brute-force attempts.
Original NVD description (English source)
A vulnerability exists in the netclient and factory services of Reolink Home Hub (versions prior to v3.3.0.456_26031911) due to the possibility of brute-force cracking the credentials. This issue could allow attackers on the same local network to intercept traffic between the Hub and associated cameras and compromise the credentials of connected cameras.

