Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): cpe:2.3:o:nuuo:nvrmini2_firmware:3.9.1:*:*:*:*:*:*:*
There are 2 matching records.
Displaying matches 1 through 2.
Vuln ID Summary CVSS Severity

NUUO NVRmini2 Network Video Recorder firmware through 3.9.1 allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow), resulting in ability to read camera feeds or reconfigure the device.

Published: December 05, 2018; 6:29:05 AM -0500
V3.0: 9.8 CRITICAL
V2.0: 10.0 HIGH

NUUO NVRMini2 version 3.9.1 is vulnerable to authenticated remote command injection. An attacker can send crafted requests to upgrade_handle.php to execute OS commands as root.

Published: November 30, 2018; 3:29:00 PM -0500
V3.0: 8.8 HIGH
V2.0: 9.0 HIGH