NUUO (NVRmini2 Devices) Data Breach
NUUO (NVRmini2 Devices) experienced a data breach that was reported on December 18, 2024. NUUO NVRmini2 devices contain a missing authentication vulnerability that allows an unauthenticated attacker to upload an encrypted TAR archive, which can be abused to add arbitrary users.
Key Facts
- Organization
- NUUO (NVRmini2 Devices)
- Date Reported
- December 18, 2024
- Incident Type
- unknown
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
Source
View original source - External link to primary source documentation
Understanding unknown Incidents
Data breaches can result in significant financial, operational, and reputational damage. Organizations should implement defense-in-depth strategies and maintain incident response capabilities.