CVE-2018-14933NUUO NVRmini Devices OS Command Injection Vulnerability

PUBLISHEDvulnerability record
2024-12-18 · last modified June 21, 2025

Metadata

CVE ID:
CVE-2018-14933
项目:
NUUO
产品:
NVRmini Devices
添加日期:
2024-12-18
到期日:
2025-01-08
最后更新:
June 21, 2025

漏洞名称

NUUO NVRmini Devices OS Command Injection Vulnerability

描述

NUUO NVRmini devices contain an OS command injection vulnerability. This vulnerability allows remote command execution via shell metacharacters in the uploaddir parameter for a writeuploaddir command.

已知用于勒索软件活动吗?

勒索软件状态:
Unknown

采集行动

The impacted product is end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue utilization of the product.

其他说明

相关 CWE