Reolink - E1 Zoom Firmware CVE

Filtered by vendor Reolink Subscribe

Filtered by product E1 Zoom Firmware

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-40150	1 Reolink	2 E1 Zoom, E1 Zoom Firmware	2022-07-22	N/A	7.5 HIGH
The web server of the E1 Zoom camera through 3.0.0.716 discloses its configuration via the /conf/ directory that is mapped to a publicly accessible path. In this way an attacker can download the entire NGINX/FastCGI configurations by querying the /conf/nginx.conf or /conf/fastcgi.conf URI.

Vulnerabilities (CVE)