Lucene search
IcscertCVELIST:CVE-2018-17934HistoryNov 27, 2018 - 9:00 p.m.
CVE-2018-17934
2018-11-2721:00:00
CWE-22
icscert
www.cve.org
4
NUUO CMS All versions 3.3 and prior the application allows external input to construct a pathname that is able to be resolved outside the intended directory. This could allow an attacker to impersonate a legitimate user, obtain restricted information, or execute arbitrary code.
CNA Affected
[
{
"product": "NUUO CMS",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "All versions 3.3 and prior"
}
]
}
]Related
prion
prion
Code injection
2018-11-27 20:29:00
metasploit
metasploit
Nuuo Central Management Server Authenticated Arbitrary File Download
2019-01-21 10:17:36
nvd
nvd
CVE-2018-17934
2018-11-27 20:29:00
cve
cve
CVE-2018-17934
2018-11-27 21:00:00
attackerkb
attackerkb
Nuuo Central Management Server Authenticated Arbitrary File Download
2018-11-27 00:00:00
packetstorm
packetstorm
Nuuo Central Management Server Authenticated Arbitrary File Download
2024-08-31 00:00:00
ics
ics
NUUO CMS (Update A)
2018-11-20 12:00:00