CVE-2021-47727

  1. Yack CVE
  2. Vulnerabilities (CVE)
  3. CVE-2021-47727

5.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

S

elea Targa IP OCR-ANPR Camera contains an unauthenticated vulnerability that allows remote attackers to access live video streams without authentication. Attackers can directly connect to RTP/RTSP or M-JPEG streams by requesting specific endpoints like p1.mjpg or p1.264 to view camera footage.

References
Link Resource
https://github.com/Mbed-TLS/mbedtls Not Applicable
https://www.exploit-db.com/exploits/49459 Exploit Third Party Advisory
https://www.selea.com Product
https://www.vulncheck.com/advisories/selea-targa-ip-camera-unauthenticated-stream-disclosure Third Party Advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5619.php Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:selea:izero_box_full_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:izero_box_full:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:selea:izero_column_entry\/8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:izero_column_entry\/8:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:selea:izero_column_full\/8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:izero_column_full\/8:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:selea:targa_504_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_504:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:selea:targa_512_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_512:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:selea:targa_704_ilb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_704_ilb:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:selea:targa_704_tkm_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_704_tkm:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:selea:targa_710_inox_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_710_inox:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:selea:targa_750_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_750:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:selea:targa_805_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_805:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:selea:targa_semplice_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_semplice:-:*:*:*:*:*:*:*

Configuration 12 (hide)

OR cpe:2.3:a:selea:carplateserver:3.005\(191112\):*:*:*:*:*:*:*
cpe:2.3:a:selea:carplateserver:3.005\(191206\):*:*:*:*:*:*:*
cpe:2.3:a:selea:carplateserver:3.100\(200225\):*:*:*:*:*:*:*
cpe:2.3:a:selea:carplateserver:4.013\(201105\):*:*:*:*:*:*:*
History

23 Feb 2026, 19:02

Type Values Removed Values Added
CPE cpe:2.3:h:selea:targa_semplice:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_512:-:*:*:*:*:*:*:*
cpe:2.3:o:selea:izero_column_entry\/8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_805:-:*:*:*:*:*:*:*
cpe:2.3:o:selea:targa_504_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:selea:targa_710_inox_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:selea:targa_805_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_704_tkm:-:*:*:*:*:*:*:*
cpe:2.3:o:selea:targa_512_firmware:-:*:*:*:*:*:*:*
cpe:2.3:a:selea:carplateserver:3.005\(191206\):*:*:*:*:*:*:*
cpe:2.3:o:selea:targa_750_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:selea:izero_box_full_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_750:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_710_inox:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:izero_column_full\/8:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:izero_box_full:-:*:*:*:*:*:*:*
cpe:2.3:a:selea:carplateserver:3.100\(200225\):*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_504:-:*:*:*:*:*:*:*
cpe:2.3:a:selea:carplateserver:3.005\(191112\):*:*:*:*:*:*:*
cpe:2.3:o:selea:targa_704_tkm_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:selea:targa_semplice_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:selea:izero_column_full\/8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:targa_704_ilb:-:*:*:*:*:*:*:*
cpe:2.3:o:selea:targa_704_ilb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:selea:izero_column_entry\/8:-:*:*:*:*:*:*:*
cpe:2.3:a:selea:carplateserver:4.013\(201105\):*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.3
First Time Selea carplateserver
Selea izero Box Full
Selea targa 504 Firmware
Selea targa 750
Selea izero Column Entry\/8
Selea targa 512 Firmware
Selea targa 750 Firmware
Selea izero Column Full\/8 Firmware
Selea
Selea izero Box Full Firmware
Selea targa 805 Firmware
Selea targa 704 Ilb
Selea targa Semplice
Selea izero Column Entry\/8 Firmware
Selea targa 704 Ilb Firmware
Selea targa 805
Selea targa 704 Tkm Firmware
Selea izero Column Full\/8
Selea targa 704 Tkm
Selea targa 504
Selea targa 710 Inox
Selea targa 710 Inox Firmware
Selea targa Semplice Firmware
Selea targa 512
References () https://github.com/Mbed-TLS/mbedtls - () https://github.com/Mbed-TLS/mbedtls - Not Applicable
References () https://www.exploit-db.com/exploits/49459 - () https://www.exploit-db.com/exploits/49459 - Exploit, Third Party Advisory
References () https://www.selea.com - () https://www.selea.com - Product
References () https://www.vulncheck.com/advisories/selea-targa-ip-camera-unauthenticated-stream-disclosure - () https://www.vulncheck.com/advisories/selea-targa-ip-camera-unauthenticated-stream-disclosure - Third Party Advisory
References () https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5619.php - () https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5619.php - Third Party Advisory

12 Dec 2025, 15:19

Type Values Removed Values Added
New CVE
Information

Published : 2025-12-09 21:15

Updated : 2026-02-23 19:02

NVD link : CVE-2021-47727

Mitre link : CVE-2021-47727

CVE.ORG link : CVE-2021-47727

JSON object : View

Products Affected

selea

CWE
CWE-306

Missing Authentication for Critical Function