Vulners
Lucene search
CVE-2025-34021
🗓️ 20 Jun 2025 18:37:00Reported by VulnCheckType 
cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 29 Views🌐 WEB
| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
 | The vulnerability of Selea Targa IP cameras’ microprogramming software, related to insufficient validation of input data, allows a intruder to carry out an SSRF attack. | 3 Jul 202500:00 | – | bdu_fstec |
 | CVE-2025-34021 | 20 Jun 202521:49 | – | circl |
 | Selea多款产品 安全漏洞 | 20 Jun 202500:00 | – | cnnvd |
 | CVE-2025-34021 Selea Targa IP OCR-ANPR Camera Server-Side Request Forgery | 20 Jun 202518:37 | – | cvelist |
 | EUVD-2025-18779 | 3 Oct 202520:07 | – | euvd |
 | CVE-2025-34021 | 20 Jun 202519:15 | – | nvd |
 | PT-2025-26457 · Selea · Targa 710 Inox +9 | 7 Nov 202000:00 | – | ptsecurity |
 | CVE-2025-34021 | 23 Jun 202508:39 | – | redhatcve |
 | VulnCheck KEV: CVE-2025-34021 | 20 Jun 202500:00 | – | vulncheck_kev |
 | CVE-2025-34021 Selea Targa IP OCR-ANPR Camera Server-Side Request Forgery | 20 Jun 202518:37 | – | vulnrichment |
10
Node
OROROROROROROROROROR
[
{
"defaultStatus": "unaffected",
"modules": [
"Web Management Interface (IP notification and image retrieval handlers)"
],
"product": "Targa IP OCR-ANPR Camera",
"vendor": "Selea",
"versions": [
{
"status": "affected",
"version": "BLD201113005214",
"versionType": "custom"
},
{
"status": "affected",
"version": "BLD201106163745",
"versionType": "custom"
},
{
"status": "affected",
"version": "BLD200304170901",
"versionType": "custom"
},
{
"status": "affected",
"version": "BLD200304170514",
"versionType": "custom"
},
{
"status": "affected",
"version": "BLD200303143345",
"versionType": "custom"
},
{
"status": "affected",
"version": "BLD191118145435",
"versionType": "custom"
},
{
"status": "affected",
"version": "BLD191021180140",
"versionType": "custom"
},
{
"status": "affected",
"version": "CPS 4.013(201105)",
"versionType": "custom"
},
{
"status": "affected",
"version": "CPS 3.100(200225)",
"versionType": "custom"
},
{
"status": "affected",
"version": "CPS 3.005(191206)",
"versionType": "custom"
},
{
"status": "affected",
"version": "CPS 3.005(191112)",
"versionType": "custom"
}
]
}
]| Source | Link |
|---|---|
| vulncheck | www.vulncheck.com/advisories/selea-targa-ip-camera-ssrf |
| exploit-db | www.exploit-db.com/exploits/49457 |
| cxsecurity | www.cxsecurity.com/issue/WLB-2021010170 |
| selea | www.selea.com/ |
| packetstorm | www.packetstorm.news/files/id/161059 |
| zeroscience | www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5617.php |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| ipnotify_address | request body | cps/test_backup_server | Unauthenticated SSRF via ipnotify_address in POST JSON to /cps/test_backup_server enabling the server to fetch or contact arbitrary host. | CWE-20, CWE-918 |
| url | request body | cps/test_url | Unauthenticated SSRF via url in POST JSON to /cps/test_url causing the server to request an arbitrary URL. | CWE-20, CWE-918 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Jun 2026 09:13Current
6.8Medium risk
Vulners AI Score6.8
CVSS 47.8
EPSS0.00526
SSVC