CISA KEV 정보
| 취약점명 | NUUO NVRmini2 Devices Missing Authentication Vulnerability |
|---|---|
| 설명 | NUUO NVRmini2 devices contain a missing authentication vulnerability that allows an unauthenticated attacker to upload an encrypted TAR archive, which can be abused to add arbitrary users. |
| 조치사항 | The impacted product is end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue utilization of the product. |
| 랜섬웨어 캠페인 악용 | Unknown |
| CWE | CWE-306 |
| 등록일 (KEV) | 2024-12-18 |
| 조치 기한 | 2025-01-08 |
| 추가 참고 | https://nuuo.com/wp-content/uploads/2023/03/NUUO-EOL-letter_NVRmini-2-and-NVRsolo-series.pdf ; https://nvd.nist.gov/vuln/detail/CVE-2022-23227 |
NVD 상세 정보
CVSS v3.1: 9.8 CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HCVSS v2.0: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C설명: NUUO NVRmini2 through 3.11 allows an unauthenticated attacker to upload an encrypted TAR archive, which can be abused to add arbitrary users because of the lack of handle_import_user.php authentication. When combined with another flaw (CVE-2011-5325), it is possible to overwrite arbitrary files under the web root and achieve code execution as root.
CWE: CWE-306 | CWE-306
참조
- https://github.com/pedrib/PoC/blob/master/advisories/NUUO/nuuo_nvrmini_round2.mkd [Exploit, Third Party Advisory]
- https://github.com/rapid7/metasploit-framework/pull/16044 [Exploit, Issue Tracking, Third Party Advisory]
- https://news.ycombinator.com/item?id=29936569 [Third Party Advisory]
- https://portswigger.net/daily-swig/researcher-discloses-alleged-zero-day-vulnerabilities-in-nuuo-nvrmini2-recording-device [Exploit, Third Party Advisory]
- https://github.com/pedrib/PoC/blob/master/advisories/NUUO/nuuo_nvrmini_round2.mkd [Exploit, Third Party Advisory]
- https://github.com/rapid7/metasploit-framework/pull/16044 [Exploit, Issue Tracking, Third Party Advisory]
- https://news.ycombinator.com/item?id=29936569 [Third Party Advisory]
- https://portswigger.net/daily-swig/researcher-discloses-alleged-zero-day-vulnerabilities-in-nuuo-nvrmini2-recording-device [Exploit, Third Party Advisory]
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-23227 [US Government Resource]
This product uses the NVD API but is not endorsed or certified by the NVD.