Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nuuo vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2016-5678
NUUO NVRmini 2 1.0.0 up to and including 3.0.0 and NUUO NVRsolo 1.0.0 up to and including 3.0.0 have hardcoded root credentials, which allows remote malicious users to obtain administrative access via unspecified vectors.
Nuuo Nvrmini 2 1.0.0
Nuuo Nvrmini 2 1.1.0
Nuuo Nvrmini 2 1.3.0
Nuuo Nvrmini 2 1.3.2
Nuuo Nvrmini 2 1.4.0
Nuuo Nvrmini 2 1.5.1
Nuuo Nvrmini 2 1.5.2
Nuuo Nvrmini 2 1.6.0
Nuuo Nvrmini 2 1.6.1
Nuuo Nvrmini 2 1.6.2
Nuuo Nvrmini 2 1.6.4
Nuuo Nvrmini 2 1.7.0
1 EDB exploit
1 Article
9.8
CVSSv3
CVE-2016-5675
handle_daylightsaving.php in NUUO NVRmini 2 1.7.5 up to and including 3.0.0, NUUO NVRsolo 1.0.0 up to and including 3.0.0, NUUO Crystal 2.2.1 up to and including 3.2.0, and NETGEAR ReadyNAS Surveillance 1.1.1 up to and including 1.4.1 allows remote malicious users to execute arbi...
Netgear Readynas Surveillance 1.1.1
Netgear Readynas Surveillance 1.1.2
Netgear Readynas Surveillance 1.2.0.4
Netgear Readynas Surveillance 1.3.2.4
Netgear Readynas Surveillance 1.3.2.14
Netgear Readynas Surveillance 1.4.0
Netgear Readynas Surveillance 1.4.1
Netgear Readynas Surveillance 1.4.2
Nuuo Crystal 2.2.1
Nuuo Crystal 3.0.0
Nuuo Crystal 3.1.0
Nuuo Crystal 3.2.0
1 EDB exploit
1 Article
7.5
CVSSv3
CVE-2016-5677
NUUO NVRmini 2 1.7.5 up to and including 3.0.0, NUUO NVRsolo 1.0.0 up to and including 3.0.0, and NETGEAR ReadyNAS Surveillance 1.1.1 up to and including 1.4.1 have a hardcoded qwe23622260 password for the nuuoeng account, which allows remote malicious users to obtain sensitive i...
Netgear Readynas Surveillance 1.1.1
Netgear Readynas Surveillance 1.1.2
Netgear Readynas Surveillance 1.2.0.4
Netgear Readynas Surveillance 1.3.2.4
Netgear Readynas Surveillance 1.3.2.14
Netgear Readynas Surveillance 1.4.0
Netgear Readynas Surveillance 1.4.1
Netgear Readynas Surveillance 1.4.2
Nuuo Nvrmini 2 1.7.5
Nuuo Nvrmini 2 1.7.6
Nuuo Nvrmini 2 2.0.0
Nuuo Nvrmini 2 2.2.1
1 EDB exploit
1 Article
9.8
CVSSv3
CVE-2016-5674
__debugging_center_utils___.php in NUUO NVRmini 2 1.7.5 up to and including 3.0.0, NUUO NVRsolo 1.7.5 up to and including 3.0.0, and NETGEAR ReadyNAS Surveillance 1.1.1 up to and including 1.4.1 allows remote malicious users to execute arbitrary PHP code via the log parameter.
Netgear Readynas Surveillance 1.1.1
Netgear Readynas Surveillance 1.1.2
Netgear Readynas Surveillance 1.2.0.4
Netgear Readynas Surveillance 1.3.2.4
Netgear Readynas Surveillance 1.3.2.14
Netgear Readynas Surveillance 1.4.0
Netgear Readynas Surveillance 1.4.1
Netgear Readynas Surveillance 1.4.2
Nuuo Nvrmini 2 1.7.5
Nuuo Nvrmini 2 1.7.6
Nuuo Nvrmini 2 2.0.0
Nuuo Nvrmini 2 2.2.1
1 EDB exploit
1 Article
7.5
CVSSv3
CVE-2016-5676
cgi-bin/cgi_system in NUUO NVRmini 2 1.7.5 up to and including 2.x, NUUO NVRsolo 1.7.5 up to and including 2.x, and NETGEAR ReadyNAS Surveillance 1.1.1 up to and including 1.4.1 allows remote malicious users to reset the administrator password via a cmd=loaddefconfig action.
Netgear Readynas Surveillance 1.1.1
Netgear Readynas Surveillance 1.1.2
Netgear Readynas Surveillance 1.2.0.4
Netgear Readynas Surveillance 1.3.2.4
Netgear Readynas Surveillance 1.3.2.14
Netgear Readynas Surveillance 1.4.0
Netgear Readynas Surveillance 1.4.1
Netgear Readynas Surveillance 1.4.2
Nuuo Nvrsolo 1.75
Nuuo Nvrsolo 2.0.0
Nuuo Nvrsolo 2.0.1
Nuuo Nvrsolo 2.1.5
1 EDB exploit
1 Article
8.8
CVSSv3
CVE-2018-18982
NUUO CMS All versions 3.3 and prior the web server application allows injection of arbitrary SQL characters, which can be used to inject SQL into an executing statement and allow arbitrary code execution.
Nuuo Nuuo Cms
1 EDB exploit
9.8
CVSSv3
CVE-2018-17888
NUUO CMS all versions 3.1 and prior, The application uses a session identification mechanism that could allow malicious users to obtain the active session ID, which could allow arbitrary remote code execution.
Nuuo Nuuo Cms
9.8
CVSSv3
CVE-2018-17890
NUUO CMS all versions 3.1 and prior, The application uses insecure and outdated software components for functionality, which could allow arbitrary code execution.
Nuuo Nuuo Cms
9.8
CVSSv3
CVE-2018-17894
NUUO CMS all versions 3.1 and prior, The application creates default accounts that have hard-coded passwords, which could allow an malicious user to gain privileged access.
Nuuo Nuuo Cms
9.8
CVSSv3
CVE-2018-17934
NUUO CMS All versions 3.3 and prior the application allows external input to construct a pathname that is able to be resolved outside the intended directory. This could allow an malicious user to impersonate a legitimate user, obtain restricted information, or execute arbitrary c...
Nuuo Nuuo Cms
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
path traversal
CVE-2025-2657
CVE-2025-30066
CVE-2025-24813
apache commons vfs
CVE-2025-2478
validation
CVE-2025-2674
code injection
medical card generation system
microsoft edge (chromium-based)
CVE-2025-2688
cicadascms
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »
Vulmon