CVE-2025-55620

None

Description

A cross-site scripting (XSS) vulnerability in the valuateJavascript() function of Reolink v4.54.0.4.20250526 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

INFO

Published Date :

2025-08-22T00:00:00.000Z

Last Modified :

2025-08-22T17:46:57.559Z

Source :

mitre

AFFECTED PRODUCTS

The following products are affected by CVE-2025-55620 vulnerability.

Vendors	Products
Reolink	Reolink

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-55620.

URL	Resource
https://relieved-knuckle-264.notion.site/Reolink-javascript-injection-qr-code-21a43700364280eaa76fd56a01b25410

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact