IDCVSSSummaryLast (major) updatePublished
CVE-2018-19864 10.0
NUUO NVRmini2 Network Video Recorder firmware through 3.9.1 allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow), resulting in ability to read camera feeds or reconfigure the device.
05-12-2018 - 06:29 05-12-2018 - 06:29
CVE-2018-15716 9.0
NUUO NVRMini2 version 3.9.1 is vulnerable to authenticated remote command injection. An attacker can send crafted requests to upgrade_handle.php to execute OS commands as root.
30-11-2018 - 15:29 30-11-2018 - 15:29
CVE-2018-1150 7.5
NUUO's NVRMini2 3.8.0 and below contains a backdoor that would allow an unauthenticated remote attacker to take over user accounts if the file /tmp/moses exists.
19-09-2018 - 11:29 19-09-2018 - 11:29
CVE-2018-1149 10.0
cgi_system in NUUO's NVRMini2 3.8.0 and below allows remote attackers to execute arbitrary code via crafted HTTP requests.
19-09-2018 - 11:29 19-09-2018 - 11:29
Back to Top Mark selected
Back to Top