CVE-2019-9653

Sažetak

NUUO Network Video Recorder Firmware 1.7.x through 3.3.x allows unauthenticated attackers to execute arbitrary commands via shell metacharacters to handle_load_config.php.

Reference

https://github.com/grayoneday/CVE-2019-9653
https://www.nccst.nat.gov.tw/NewsRSS?lang=en&RSSType=mssecurity
https://www.nuuo.com/DownloadMainpage.php

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

24-08-2020 - 17:37

Objavljeno

31-05-2019 - 22:29