漏洞描述 Reolink是一款Wi-Fi摄像头,该产品存在信息泄露漏洞,攻击者可以通过查询 /conf/nginx.conf 或 /conf/fastcgi.confURI 来下载整个 NGINX/FastCGI 配置。
相关漏洞推荐 POCCVE-2021-40149: Reolink E1 Zoom Camera <=3.0.0.716 - Private Key Disclosure POCCVE-2021-40150: Reolink E1 Zoom Camera <=3.0.0.716 - Information Disclosure POCCVE-2021-40149: Reolink E1 Zoom Camera <=3.0.0.716 - Private Key Disclosure POCCVE-2021-40150: Reolink E1 Zoom Camera <=3.0.0.716 - Information Disclosure 无POCReolink E1 ZOOM CAMERA信息泄露(CVE-2022-34092)