Vulnerabilities > CVE-2018-17892 - Unspecified vulnerability in Nuuo CMS

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

nuuo

NVD

Published: 2018-10-12

Updated: 2019-10-09

Summary

NUUO CMS all versions 3.1 and prior, The application implements a method of user account control that causes standard account security features to not be utilized as intended, which could allow user account compromise and may allow for remote code execution.

Vulnerable Configurations

Part	Description	Count
Application	Nuuo Nuuo Nuuo CMS 1.3.1 Nuuo Nuuo CMS 1.3.3 Nuuo Nuuo CMS 1.5.0 Nuuo Nuuo CMS 1.5.2 Nuuo Nuuo CMS 1.6.0 Nuuo Nuuo CMS 1.7.0 Nuuo Nuuo CMS 2.0 Nuuo Nuuo CMS 2.1 Nuuo Nuuo CMS 2.3 Nuuo Nuuo CMS 2.3.1 Nuuo Nuuo CMS 2.3.2 Nuuo Nuuo CMS 2.4.0 Nuuo Nuuo CMS 2.5.0 Nuuo Nuuo CMS 2.6.0 Nuuo Nuuo CMS 2.7.0 Nuuo Nuuo CMS 2.8.0 Nuuo Nuuo CMS 2.9.0 Nuuo Nuuo CMS 2.10.0 Nuuo Nuuo CMS 2.11.0 Nuuo Nuuo CMS 3.0.0 Nuuo Nuuo CMS 3.1	21

Summary

Vulnerable Configurations

References