Improper Input Validation
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v18.104.22.168_20121102. A specially-crafted HTTP request can lead to a reboot. SetPowerLed param is not object. An attacker can send an HTTP request to trigger this vulnerability.
CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.