This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
Detail | |||
---|---|---|---|
Vendor | Nuuo | First view | 2016-08-31 |
Product | Crystal | Last view | 2016-08-31 |
Version | 2.2.1 | Type | Application |
Update | * | ||
Edition | * | ||
Language | * | ||
Sofware Edition | * | ||
Target Software | * | ||
Target Hardware | * | ||
Other | * | ||
CPE Product | cpe:2.3:a:nuuo:crystal |
Activity : Overall
Related : CVE
Date | Alert | Description | |
---|---|---|---|
9.8 | 2016-08-31 | CVE-2016-5675 | handle_daylightsaving.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.0.0 through 3.0.0, NUUO Crystal 2.2.1 through 3.2.0, and NETGEAR ReadyNAS Surveillance 1.1.1 through 1.4.1 allows remote attackers to execute arbitrary PHP code via the NTPServer parameter. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
100% (1) | CWE-20 | Improper Input Validation |
Snort® IPS/IDS
Date | Description |
---|---|
2016-09-13 | Netgear ReadyNAS Surveillance handle_daylightsaving command injection attempt RuleID : 39848 - Type : SERVER-WEBAPP - Revision : 2 |
2016-09-13 | Netgear ReadyNAS Surveillance handle_daylightsaving command injection attempt RuleID : 39847 - Type : SERVER-WEBAPP - Revision : 2 |