| Titel | NUUO NUUO Came handle_config.php Command Injection |
|---|
| Beschreibung | The handle_config.
php file in NUUO cameras is vulnerable to command execution.
Attackers can exploit this vulnerability by crafting specific HTTP requests to
execute arbitrary commands on the target system. This vulnerability can be
exploited without authentication and affects a wide range of devices used globally
by multiple subsidiaries.
Pass the `log` parameter to concatenate it into the `print_file` function. |
|---|
| Quelle | ⚠️ https://pan.baidu.com/s/1YW52iM0ehUfFKa_CiTHBjQ?from=init&pwd=kqec |
|---|
| Benutzer | alc9700 (UID 79368) |
|---|
| Einreichung | 03.02.2025 06:55 (vor 1 Jahr) |
|---|
| Moderieren | 15.02.2025 15:43 (12 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 295954 [NUUO Camera bis 20250203 /handle_config.php print_file log erweiterte Rechte] |
|---|
| Punkte | 20 |
|---|