E1 Zoom Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:reolink:e1_zoom_firmware:*:*:*:*:*:*:*:*
part: o version: * update: *
| Vendor | Reolink (b49896ec-72c3-57ee-8581-bf98824c2ad2) |
|---|---|
| Product | E1 Zoom Firmware (7267510a-ac42-568c-863f-ba78150f61b9) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-40150 |
vulnerable | 2026-06-03 14:45:23.177860 |
Details available
The web server of the E1 Zoom camera through 3.0.0.716 discloses its configuration via the /conf/ directory that is mapped to a publicly accessible path. In this way an attacker can download the entire NGINX/FastCGI configurations by querying the /conf/nginx.conf or /conf/fastcgi.conf URI.
Published: 2022-07-17T22:54:25.000Z
Updated: 2024-08-04T02:27:31.538Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-40149 |
vulnerable | 2026-06-03 14:45:23.176749 |
Details available
The web server of the E1 Zoom camera through 3.0.0.716 discloses its SSL private key via the root web server directory. In this way an attacker can download the entire key via the /self.key URI.
Published: 2022-07-17T21:36:27.000Z
Updated: 2024-08-04T02:27:31.522Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.