NUUO NVRMini2 version 3.9.1 is vulnerable to authenticated remote command injection. An attacker can send crafted requests to upgrade_handle.php to execute OS commands as root.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nuuo nvrmini2_firmware 3.9.1 |