Authentication Bypass Using an Alternate Path or Channel

CVE-2025-55623

Medium

5.4/10

Summary

An issue in the lock screen component of Reolink v4.54.0.4.20250526 allows attackers to bypass authentication via using an ADB (Android Debug Bridge).

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: LOW
Availability Impact: LOW

CWE-288 - Authentication Bypass Using an Alternate Path or Channel

A product requires authentication, but the product has an alternate path or channel that does not require authentication.

References

Advisory Timeline

Published Aug 22, 2025

Authentication Bypass Using an Alternate Path or Channel

CVE-2025-55623

Summary

CWE-288 - Authentication Bypass Using an Alternate Path or Channel

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS