Lucene search
K

102 matches found

Saint
Saint
added 2016/08/30 12:0 a.m.44 views

NETGEAR ReadyNAS Surveillance Command Execution

Added: 08/30/2016 CVE: CVE-2016-5674 BID: 92318 Background NETGEAR ReadyNAS Surveillance combines their storage and switching solution NETGEAR ReadyNAS Network Attached Storage system with network video recording software from NUUO to provide an affordable surveillance solution for small...

10CVSS8.4AI score0.9461EPSS
Exploits11
Saint
Saint
added 2016/08/30 12:0 a.m.38 views

NETGEAR ReadyNAS Surveillance Command Execution

Added: 08/30/2016 CVE: CVE-2016-5674 BID: 92318 Background NETGEAR ReadyNAS Surveillance combines their storage and switching solution NETGEAR ReadyNAS Network Attached Storage system with network video recording software from NUUO to provide an affordable surveillance solution for small...

10CVSS8.4AI score0.9461EPSS
Exploits11
CNVD
CNVD
added 2016/08/14 12:0 a.m.4 views

NUUO NVRmini 2 and NetGear ReadyNAS Surveillance Buffer Overflow Vulnerability

NUUO NVRmini 2 is a network video recorder from NUUO.NetGear ReadyNAS Surveillance is a comprehensive IP video surveillance solution from NetGear that integrates video surveillance software, storage, switching and network management. A buffer overflow vulnerability exists in NUUO NVRmini 2 versio...

9CVSS7.8AI score0.16752EPSS
Exploits4References1
CNVD
CNVD
added 2016/08/14 12:0 a.m.5 views

Information Disclosure Vulnerabilities in Multiple NUUO and NetGear Products

NUUO NVRmini 2 and NVRsolo are network video recorders.NetGear ReadyNAS Surveillance is a comprehensive IP video surveillance solution that integrates video surveillance software, storage, switching, and network management.NUUO Crystal is a Linux-based enterprise VMS Virtual Memory System NUUO...

7.5CVSS6.9AI score0.11989EPSS
Exploits4References1
Packet Storm
Packet Storm
added 2016/08/11 12:0 a.m.67 views

NUUO NVRmini 2 / Crystal / NETGEAR ReadyNAS Surveillance Authenticated Remote Code Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'NUUO NVRmini 2 / Crystal / NETGEAR ReadyNAS Surveillance Authenticated Remote Code Execution', 'Description' = %q The NVRmini 2...

10CVSS0.3AI score0.70877EPSS
Exploits7
0day.today
0day.today
added 2016/08/05 12:0 a.m.109 views

NUUO NVRmini2 / NVRsolo / Crystal Devices / Netgear ReadyNAS Surveillance Application - Multiple Vul

Exploit for hardware platform in category remote exploits Multiple vulnerabilities in NUUO NVRmini2 / NVRsolo / Crystal devices and NETGEAR ReadyNAS Surveillance application Discovered by Pedro Ribeiro email protected, Agile Information Security http://www.agileinfosec.co.uk/...

10CVSS0.5AI score0.9461EPSS
Exploits15
Exploit DB
Exploit DB
added 2016/08/05 12:0 a.m.74 views

NUUO NVRmini2 / NVRsolo / Crystal Devices / NETGEAR ReadyNAS Surveillance Application - Multiple Vulnerabilities

Multiple vulnerabilities in NUUO NVRmini2 / NVRsolo / Crystal devices and NETGEAR ReadyNAS Surveillance application Discovered by Pedro Ribeiro [email protected], Agile Information Security http://www.agileinfosec.co.uk/ ==========================================================================...

10CVSS8.2AI score0.9461EPSS
Exploits13
Metasploit
Metasploit
added 2016/08/04 3:55 p.m.71 views

NUUO NVRmini 2 / NETGEAR ReadyNAS Surveillance Unauthenticated Remote Code Execution

The NVRmini 2 Network Video Recorder and the ReadyNAS Surveillance application are vulnerable to an unauthenticated remote code execution on the exposed web administration interface. This results in code execution as root in the NVRmini and the 'admin' user in ReadyNAS. This exploit has been test...

9.8CVSS0.7AI score0.9461EPSS
Exploits11
Packet Storm
Packet Storm
added 2016/03/12 12:0 a.m.43 views

Netgear ReadyNAS Remote Code Execution

Unauthenticated Remote Command Execution in Netgear ReadyNAS Surveillance ========================================================================= Product Description =================== Netgear ReadyNAS Surveillance is a NVR Network Video Recorder available for Netgear NAS systems. Vulnerabilit...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2015/07/31 12:0 a.m.39 views

Netgear ReadyNAS LAN /dbbroker 6.2.4 - Credential Disclosure

!/usr/bin/env python Exploit Title: NETGEAR ReadyNAS LAN /dbbroker Credential Stealing Date: 25/07/2015 Exploit Author: St0rn Vendor Homepage: www.netgear.fr/business/products/storage/readynas Software Link: apps.readynas.com/pages/?pageid=143 Version: Firmware 6.2.4 Import from scapy.all import...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

NETGEAR ReadyNAS Perl Code Evaluation

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ManualRanking include Msf::Exploit::Remote::HttpClient def initializein...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/06/05 12:0 a.m.13 views

NETGEAR ReadyNAS np_handler Code Execution (CVE-2013-2751)

A security vulnerability was found in FrontView web interface in NETGEAR ReadyNAS RAIDiator. The vulnerability is due to the nphandler.pl script failing to sanitize input. A remote attacker can exploit this weakness by execute arbitrary Perl code via a crafted request...

3.9AI score0.71599EPSS
Exploits5
NVD
NVD
added 2013/12/12 6:55 p.m.25 views

CVE-2013-2752

Cross-site request forgery CSRF vulnerability in frontview/lib/nphandler.pl in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to hijack the authentication of users...

6.8CVSS7AI score0.01005EPSS
Exploits0References4
Prion
Prion
added 2013/12/12 6:55 p.m.20 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in frontview/lib/nphandler.pl in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to hijack the authentication of users...

6.8CVSS7.6AI score0.01005EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2013/12/12 6:0 p.m.30 views

CVE-2013-2752

Cross-site request forgery CSRF vulnerability in frontview/lib/nphandler.pl in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to hijack the authentication of users...

7AI score0.01005EPSS
Exploits0References4
0day.today
0day.today
added 2013/11/25 12:0 a.m.56 views

NETGEAR ReadyNAS Perl Code Evaluation Vulnerability

This Metasploit module exploits a Perl code injection on NETGEAR ReadyNAS 4.2.23 and 4.1.11. The vulnerability exists on the web fronted, specifically on the nphandler.pl component, due to the insecure usage of the eval perl function. This Metasploit module has been tested successfully on a NETGE...

10CVSS6.9AI score0.71599EPSS
Exploits5
Packet Storm
Packet Storm
added 2013/10/28 12:0 a.m.35 views

Netgear ReadyNAS Remote Command Execution

!/usr/bin/env python import sys from requests import get '''Lazy exploit is lazy''' def pwnlocal,remote: res = get'http://%s/nphandler/'%local,params='PAGE':'Nasstate','OPERATION':'get','SECTION':'perl -e 'use...

0.8AI score
Exploits0
securityvulns
securityvulns
added 2013/10/28 12:0 a.m.47 views

NetGear ReadyNAS code execution

Web interface commands injection...

10CVSS2.8AI score0.71599EPSS
Exploits5References1Affected Software1
Metasploit
Metasploit
added 2013/10/24 9:10 p.m.30 views

NETGEAR ReadyNAS Perl Code Evaluation

This module exploits a Perl code injection on NETGEAR ReadyNAS 4.2.23 and 4.1.11. The vulnerability exists on the web front end, specifically in the nphandler.pl component, due to an insecure usage of the eval perl function. This module has been tested successfully on a NETGEAR ReadyNAS 4.2.23...

10CVSS7.4AI score0.71599EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2013/10/24 12:0 a.m.122 views

NETGEAR ReadyNAS Remote Unauthenticated Command Execution

The remote NETGEAR ReadyNAS device is affected by a flaw in the nphandler.pl script that allows an unauthenticated, remote attacker to execute arbitrary commands with root privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

10CVSS5.8AI score0.71599EPSS
Exploits5References3
Rows per page
Query Builder