NUUO (NVRmini Devices) Data Breach
NUUO (NVRmini Devices) experienced a data breach that was reported on December 18, 2024. NUUO NVRmini devices contain an OS command injection vulnerability. This vulnerability allows remote command execution via shell metacharacters in the uploaddir parameter for a writeuploaddir command.
Key Facts
- Organization
- NUUO (NVRmini Devices)
- Date Reported
- December 18, 2024
- Incident Type
- unknown
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
Source
View original source - External link to primary source documentation
Understanding unknown Incidents
Data breaches can result in significant financial, operational, and reputational damage. Organizations should implement defense-in-depth strategies and maintain incident response capabilities.