NUUO NVRmini Products CVE-2018-15716 Incomplete Fix Remote Command Injection Vulnerability

NUUO NVRmini Products are prone to an remote command-injection vulnerability.

An attacker may exploit this issue to inject and execute arbitrary commands within the context of the affected application; this may aid in further attacks.

NOTE: This issue is the result of an incomplete fix for the issue described in BID 106058 (NUUO NVRmini Products CVE-2018-14933 Remote Command Injection Vulnerability).


 

Privacy Statement
Copyright 2010, SecurityFocus