CVE-2025-34021

Summary

A server-side request forgery (SSRF) vulnerability exists in multiple Selea Targa IP OCR-ANPR camera models, including iZero, Targa 512, Targa 504, Targa Semplice, Targa 704 TKM, Targa 805, Targa 710 INOX, Targa 750, and Targa 704 ILB. The application fails to validate user-supplied input in JSON POST parameters such as ipnotify_address and url, which are used by internal mechanisms to perform image fetch and DNS lookups. This allows remote unauthenticated attackers to induce the system to make arbitrary HTTP requests to internal or external systems, potentially bypassing firewall policies or conducting internal service enumeration. Exploitation evidence was observed by the Shadowserver Foundation on 2025-01-25 UTC.

Affected Software

VendorProductVersion RangeStatus
SeleaTarga IP OCR-ANPR CameraBLD201113005214affected
SeleaTarga IP OCR-ANPR CameraBLD201106163745affected
SeleaTarga IP OCR-ANPR CameraBLD200304170901affected
SeleaTarga IP OCR-ANPR CameraBLD200304170514affected
SeleaTarga IP OCR-ANPR CameraBLD200303143345affected
SeleaTarga IP OCR-ANPR CameraBLD191118145435affected
SeleaTarga IP OCR-ANPR CameraBLD191021180140affected
SeleaTarga IP OCR-ANPR CameraCPS 4.013(201105)affected
SeleaTarga IP OCR-ANPR CameraCPS 3.100(200225)affected
SeleaTarga IP OCR-ANPR CameraCPS 3.005(191206)affected
SeleaTarga IP OCR-ANPR CameraCPS 3.005(191112)affected

Weaknesses

  • CWE-918: CWE-918 Server-Side Request Forgery (SSRF)
  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

References