This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Detail | |||
|---|---|---|---|
| Vendor | Nuuo | First view | 2016-08-31 |
| Product | Crystal | Last view | 2016-08-31 |
| Version | 2.2.1 | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:nuuo:crystal | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 9.8 | 2016-08-31 | CVE-2016-5675 | handle_daylightsaving.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.0.0 through 3.0.0, NUUO Crystal 2.2.1 through 3.2.0, and NETGEAR ReadyNAS Surveillance 1.1.1 through 1.4.1 allows remote attackers to execute arbitrary PHP code via the NTPServer parameter. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 100% (1) | CWE-20 | Improper Input Validation |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2016-09-13 | Netgear ReadyNAS Surveillance handle_daylightsaving command injection attempt RuleID : 39848 - Type : SERVER-WEBAPP - Revision : 2 |
| 2016-09-13 | Netgear ReadyNAS Surveillance handle_daylightsaving command injection attempt RuleID : 39847 - Type : SERVER-WEBAPP - Revision : 2 |
