SID 1:50647

Report a false positive

Rule Category

SERVER-WEBAPP -- Snort has detected traffic exploiting vulnerabilities in web based applications on servers.

Alert Message

SERVER-WEBAPP NUUO NVRmini upgrade_handle.php command injection attempt

Rule Explanation

This event is generated when an attempt to exploit CVE-2018-14933 is detected. Impact: Web Application Attack Details: NUUO NVRmini IP camera contains a command injection vulnerability in its writeuploaddir command in the upgrade_handle.php file. Due to lack of input sanitation, an attacker can force commands to be executed through that page. Ease of Attack: Simple, at least two known proofs of concept exist.

What To Look For

No information provided

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

Rule Groups

No rule groups

CVE

CVE-2018-14933

Additional Links

exploit-db.com/exploits/46340

Rule Vulnerability

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.
CVE-2018-14933
 Loading description