CVE-2019-11001

Published: 2019-04-08T17:29Z

Last Modified: 2025-03-14T17:49Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

On Reolink RLC-410W, C1 Pro, C2 Pro, RLC-422W, and RLC-511W devices through 1.0.227, an authenticated admin can use the "TestEmail" functionality to inject and run OS commands as root, as demonstrated by shell metacharacters in the addr1 field. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt