CVE-2018-14933: NUUO NVRmini Devices OS Command Injection Vulnerability .
NUUO NVRmini Devices OS Command Injection Vulnerability . NUUO NVRmini devices contain an OS command injection vulnerability. This vulnerability allows remote command execution via shell metacharacters in the uploaddir parameter for a writeuploaddir command.
- CISA KEV-listed (remediation due 2025-01-08)
- EPSS 93.9% (99.9% percentile)