GobyVuls/NUUO_NVR___debugging_center_utils___.php_Command_Execution.md at 614427b789fc336cf15e0e8a46c9b0771a1d2dfb - GobyVuls - 临风笛

admin/GobyVuls

mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-05 10:16:59 +00:00

之乎者也 7c5d50865b

Create NUUO_NVR___debugging_center_utils___.php_Command_Execution.md

2023-04-13 15:46:31 +08:00

1.1 KiB

Raw Blame History

NUUO NVR debugging_center_utils_.php Command Execution

Vulnerability	NUUO NVR debugging_center_utils_.php Command Execution
Chinese name	NUUO NVR 摄像机 debugging_center_utils_.php 命令执行漏洞
CVSS core	9.0
FOFA Query (click to view the results directly)	title="Network Video Recorder Login"
Number of assets affected	10146
Description	The NUUO NVR video storage management device debugging_center_utils_.php has an unauthorized remote command execution vulnerability. An attacker can execute arbitrary system commands without any permissions, thereby invading the server and obtaining administrator permissions on the server.
Impact	Attackers can use this vulnerability to arbitrarily execute code on the server side, write backdoors, obtain server permissions, and then control the entire web server.<