CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2018-1150
https://notcve.org/view.php?id=CVE-2018-1150
NUUO's NVRMini2 3.8.0 and below contains a backdoor that would allow an unauthenticated remote attacker to take over user accounts if the file /tmp/moses exists. NVRMini2 en versiones 3.8.0 y anteriores de NUUO contiene una puerta trasera que permitiría que un atacante remoto no autenticado controle cuentas de usuario si existe el archivo /tmp/moses. • http://www.securityfocus.com/bid/105720 https://www.nuuo.com/backend/CKEdit/upload/files/NUUO_NVRsolo_v3_9_1_Release%20note.pdf https://www.tenable.com/security/research/tra-2018-25 •
CVSS: 10.0EPSS: 6%CPEs: 2EXPL: 2CVE-2018-1149
https://notcve.org/view.php?id=CVE-2018-1149
cgi_system in NUUO's NVRMini2 3.8.0 and below allows remote attackers to execute arbitrary code via crafted HTTP requests. cgi_system en NVRMini2 en versiones 3.8.0 y anteriores de NUUO permite que los atacantes remotos ejecuten código arbitrario mediante peticiones HTTP manipuladas • http://www.securityfocus.com/bid/105720 https://github.com/tenable/poc/tree/master/nuuo/nvrmini2 https://www.nuuo.com/backend/CKEdit/upload/files/NUUO_NVRsolo_v3_9_1_Release%20note.pdf https://www.tenable.com/security/research/tra-2018-25 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 44%CPEs: 2EXPL: 2CVE-2018-14933 – NUUO NVRmini - upgrade_handle.php Remote Command Execution
https://notcve.org/view.php?id=CVE-2018-14933
upgrade_handle.php on NUUO NVRmini devices allows Remote Command Execution via shell metacharacters in the uploaddir parameter for a writeuploaddir command. upgrade_handle.php en dispositivos NUUO NVRmini permite la ejecución remota de comandos mediante metacaracteres shell en el parámetro uploaddir de un comando writeuploaddir. • https://www.exploit-db.com/exploits/46340 https://www.exploit-db.com/exploits/45070 https://www.berkdusunur.net/2018/11/development-of-metasploit-module-after.html https://www.tenable.com/security/research/tra-2018-41 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2016-6553 – Nuuo NT-4040 Titan, firmware NT-4040_01.07.0000.0015_1120, uses default credentials
https://notcve.org/view.php?id=CVE-2016-6553
Nuuo NT-4040 Titan, firmware NT-4040_01.07.0000.0015_1120, uses non-random default credentials of: admin:admin and localdisplay:111111. A remote network attacker can gain privileged access to a vulnerable device. Nuuo NT-4040 Titan, con firmware NT-4040_01.07.0000.0015_1120, emplea credenciales por defecto no aleatorias de: admin:admin y localdisplay:111111. Un atacante remoto en la red puede obtener acceso privilegiado a un dispositivo vulnerable. • http://www.securityfocus.com/bid/93807 https://www.kb.cert.org/vuls/id/326395 • CWE-255: Credentials Management Errors •
CVSS: 9.8EPSS: 63%CPEs: 2EXPL: 1CVE-2018-11523 – NUUO NVRmini2 / NVRsolo - Arbitrary File Upload
https://notcve.org/view.php?id=CVE-2018-11523
upload.php on NUUO NVRmini 2 devices allows Arbitrary File Upload, such as upload of .php files. upload.php en dispositivos NUUO NVRmini 2 permite la subida de archivos arbitrarios, como .php. • https://www.exploit-db.com/exploits/44794 https://github.com/unh3x/just4cve/issues/1 • CWE-434: Unrestricted Upload of File with Dangerous Type •