- EPSS 38.16%
- Veröffentlicht 31.08.2016 15:59:04
- Zuletzt bearbeitet 12.04.2025 10:46:40
NUUO NVRmini 2 1.0.0 through 3.0.0 and NUUO NVRsolo 1.0.0 through 3.0.0 have hardcoded root credentials, which allows remote attackers to obtain administrative access via unspecified vectors.
CVE-2016-5677
- EPSS 19.23%
- Veröffentlicht 31.08.2016 15:59:03
- Zuletzt bearbeitet 12.04.2025 10:46:40
NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.0.0 through 3.0.0, and NETGEAR ReadyNAS Surveillance 1.1.1 through 1.4.1 have a hardcoded qwe23622260 password for the nuuoeng account, which allows remote attackers to obtain sensitive information v...
CVE-2016-5676
- EPSS 76.23%
- Veröffentlicht 31.08.2016 15:59:02
- Zuletzt bearbeitet 12.04.2025 10:46:40
cgi-bin/cgi_system in NUUO NVRmini 2 1.7.5 through 2.x, NUUO NVRsolo 1.7.5 through 2.x, and NETGEAR ReadyNAS Surveillance 1.1.1 through 1.4.1 allows remote attackers to reset the administrator password via a cmd=loaddefconfig action.
- EPSS 73.06%
- Veröffentlicht 31.08.2016 15:59:01
- Zuletzt bearbeitet 12.04.2025 10:46:40
handle_daylightsaving.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.0.0 through 3.0.0, NUUO Crystal 2.2.1 through 3.2.0, and NETGEAR ReadyNAS Surveillance 1.1.1 through 1.4.1 allows remote attackers to execute arbitrary PHP code via the N...
- EPSS 89.38%
- Veröffentlicht 31.08.2016 15:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
__debugging_center_utils___.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.7.5 through 3.0.0, and NETGEAR ReadyNAS Surveillance 1.1.1 through 1.4.1 allows remote attackers to execute arbitrary PHP code via the log parameter.