permission and access control vulnerability, which exists in V2.1.14 and below versions of C520V21 smart camera devices. An attacker can construct a URL for directory traversal and access to other unauthorized files or resources.
[
{
"product": "C520V21",
"vendor": "ZTE Corporation",
"versions": [
{
"status": "affected",
"version": "All versions up to V2.1.14"
}
]
}
]