CVE-2022-23227

⚠ KEVEPSS 53.9%

NUUO NVRmini2 Devices Missing Authentication Vulnerability

Added to CISA KEV: 12/18/2024

Description

NUUO NVRmini2 devices contain a missing authentication vulnerability that allows an unauthenticated attacker to upload an encrypted TAR archive, which can be abused to add arbitrary users.

Affected packages (0)

No package mapping in OSV.