CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-5679

cgi-bin/cgi_main in NUUO NVRmini 2 1.7.6 through 3.0.0 and NETGEAR ReadyNAS Surveillance 1.1.2 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the sn parameter to the transfer_license command.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.083

EPSS Ranking 91.8%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 9.0

References

http://www.kb.cert.org/vuls/id/856152
http://www.securityfocus.com/bid/92318
https://www.exploit-db.com/exploits/40200/
http://www.kb.cert.org/vuls/id/856152
http://www.securityfocus.com/bid/92318
https://www.exploit-db.com/exploits/40200/

Products affected by CVE-2016-5679

Netgear » Readynas Surveillance » Version: 1.1.2

cpe:2.3:a:netgear:readynas_surveillance:1.1.2
Nuuo » Nvrmini 2 » Version: 1.7.6

cpe:2.3:o:nuuo:nvrmini_2:1.7.6
Nuuo » Nvrmini 2 » Version: 2.0.0

cpe:2.3:o:nuuo:nvrmini_2:2.0.0
Nuuo » Nvrmini 2 » Version: 2.2.1

cpe:2.3:o:nuuo:nvrmini_2:2.2.1
Nuuo » Nvrmini 2 » Version: 3.0.0

cpe:2.3:o:nuuo:nvrmini_2:3.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-5679

Products

Pricing

Contact Us