Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nuuo vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-14933
upgrade_handle.php on NUUO NVRmini devices allows Remote Command Execution via shell metacharacters in the uploaddir parameter for a writeuploaddir command.
Nuuo Nvrmini Firmware 2016
1 EDB exploit
9.8
CVSSv3
CVE-2016-6553
Nuuo NT-4040 Titan, firmware NT-4040_01.07.0000.0015_1120, uses non-random default credentials of: admin:admin and localdisplay:111111. A remote network attacker can gain privileged access to a vulnerable device.
Nuuo Nt-4040 Titan Firmware Nt-4040 01.07.0000.0015 1120
9.8
CVSSv3
CVE-2018-11523
upload.php on NUUO NVRmini 2 devices allows Arbitrary File Upload, such as upload of .php files.
Nuuo Nvrmini 2 Firmware
1 EDB exploit
9.8
CVSSv3
CVE-2016-5674
__debugging_center_utils___.php in NUUO NVRmini 2 1.7.5 up to and including 3.0.0, NUUO NVRsolo 1.7.5 up to and including 3.0.0, and NETGEAR ReadyNAS Surveillance 1.1.1 up to and including 1.4.1 allows remote malicious users to execute arbitrary PHP code via the log parameter.
Netgear Readynas Surveillance 1.4.2
Netgear Readynas Surveillance 1.4.1
Netgear Readynas Surveillance 1.1.1
Netgear Readynas Surveillance 1.1.2
Netgear Readynas Surveillance 1.3.2.14
Netgear Readynas Surveillance 1.2.0.4
Netgear Readynas Surveillance 1.3.2.4
Netgear Readynas Surveillance 1.4.0
Nuuo Nvrmini 2 3.0.0
Nuuo Nvrmini 2 2.2.1
Nuuo Nvrmini 2 2.0.0
Nuuo Nvrmini 2 1.7.6
Nuuo Nvrmini 2 1.7.5
Nuuo Nvrsolo 2.3.9.6
Nuuo Nvrsolo 2.3.7.10
Nuuo Nvrsolo 2.0.0
Nuuo Nvrsolo 1.75
Nuuo Nvrsolo 3.0.0
Nuuo Nvrsolo 2.1.5
Nuuo Nvrsolo 2.0.1
Nuuo Nvrsolo 2.3.7.9
Nuuo Nvrsolo 2.3.1.20
1 EDB exploit
1 Article
9.8
CVSSv3
CVE-2016-5675
handle_daylightsaving.php in NUUO NVRmini 2 1.7.5 up to and including 3.0.0, NUUO NVRsolo 1.0.0 up to and including 3.0.0, NUUO Crystal 2.2.1 up to and including 3.2.0, and NETGEAR ReadyNAS Surveillance 1.1.1 up to and including 1.4.1 allows remote malicious users to execute arbi...
Netgear Readynas Surveillance 1.4.1
Netgear Readynas Surveillance 1.1.1
Netgear Readynas Surveillance 1.3.2.4
Netgear Readynas Surveillance 1.4.0
Netgear Readynas Surveillance 1.4.2
Netgear Readynas Surveillance 1.1.2
Netgear Readynas Surveillance 1.3.2.14
Netgear Readynas Surveillance 1.2.0.4
Nuuo Crystal 2.2.1
Nuuo Crystal 3.2.0
Nuuo Crystal 3.1.0
Nuuo Crystal 3.0.0
Nuuo Nvrsolo 1.3.0
Nuuo Nvrsolo 1.2.0
Nuuo Nvrsolo 2.3.9.6
Nuuo Nvrsolo 2.3.7.10
Nuuo Nvrsolo 2.0.0
Nuuo Nvrsolo 1.75
Nuuo Nvrsolo 1.0.1
Nuuo Nvrsolo 1.0.0
Nuuo Nvrsolo 3.0.0
Nuuo Nvrsolo 2.1.5
1 EDB exploit
1 Article
9.8
CVSSv3
CVE-2016-5678
NUUO NVRmini 2 1.0.0 up to and including 3.0.0 and NUUO NVRsolo 1.0.0 up to and including 3.0.0 have hardcoded root credentials, which allows remote malicious users to obtain administrative access via unspecified vectors.
Nuuo Nvrmini 2 1.6.2
Nuuo Nvrmini 2 1.6.1
Nuuo Nvrmini 2 1.1.0
Nuuo Nvrmini 2 1.0.0
Nuuo Nvrmini 2 3.0.0
Nuuo Nvrmini 2 1.7.0
Nuuo Nvrmini 2 1.6.4
Nuuo Nvrmini 2 1.3.2
Nuuo Nvrmini 2 1.3.0
Nuuo Nvrmini 2 1.6.0
Nuuo Nvrmini 2 1.5.2
Nuuo Nvrmini 2 2.2.1
Nuuo Nvrmini 2 2.0.0
Nuuo Nvrmini 2 1.7.2
Nuuo Nvrmini 2 1.7.1
Nuuo Nvrmini 2 1.5.1
Nuuo Nvrmini 2 1.4.0
Nuuo Nvrmini 2 1.7.6
Nuuo Nvrmini 2 1.7.5
Nuuo Nvrsolo 1.2.0
Nuuo Nvrsolo 1.1.2
Nuuo Nvrsolo 2.3.9.6
1 EDB exploit
1 Article
8.8
CVSSv3
CVE-2018-15716
NUUO NVRMini2 version 3.9.1 is vulnerable to authenticated remote command injection. An attacker can send crafted requests to upgrade_handle.php to execute OS commands as root.
Nuuo Nvrmini2 Firmware 3.9.1
8.8
CVSSv3
CVE-2018-18982
NUUO CMS All versions 3.3 and prior the web server application allows injection of arbitrary SQL characters, which can be used to inject SQL into an executing statement and allow arbitrary code execution.
Nuuo Nuuo Cms
1 EDB exploit
8.8
CVSSv3
CVE-2018-17892
NUUO CMS all versions 3.1 and prior, The application implements a method of user account control that causes standard account security features to not be utilized as intended, which could allow user account compromise and may allow for remote code execution.
Nuuo Nuuo Cms
8.8
CVSSv3
CVE-2016-5679
cgi-bin/cgi_main in NUUO NVRmini 2 1.7.6 up to and including 3.0.0 and NETGEAR ReadyNAS Surveillance 1.1.2 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the sn parameter to the transfer_license command.
Nuuo Nvrmini 2 3.0.0
Nuuo Nvrmini 2 2.2.1
Nuuo Nvrmini 2 2.0.0
Nuuo Nvrmini 2 1.7.6
Netgear Readynas Surveillance 1.1.2
1 EDB exploit
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »