PT-2018-15132 · Nuuo · Nvrmini2

Published

2018-12-05

Updated

2019-06-04

CVE-2018-19864

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions NUUO NVRmini2 Network Video Recorder firmware versions prior to 3.9.2

Description The issue allows remote attackers to execute arbitrary code or cause a denial of service due to a buffer overflow. This can result in the ability to read camera feeds or reconfigure the device.

Recommendations For versions prior to 3.9.2, update to version 3.9.2 or later to resolve the issue.

Exploit

Fix

RCE

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-119

Related Identifiers

CVE-2018-19864

Affected Products

Nvrmini2

PT-2018-15132 · Nuuo · Nvrmini2

CVE-2018-19864

Weakness Enumeration

Related Identifiers

Affected Products

References · 6