Vulnerabilities > Netgear > Readynas Surveillance > Critical

DATE CVE VULNERABILITY TITLE RISK
2016-08-31 CVE-2016-5674 Improper Input Validation vulnerability in multiple products
__debugging_center_utils___.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.7.5 through 3.0.0, and NETGEAR ReadyNAS Surveillance 1.1.1 through 1.4.1 allows remote attackers to execute arbitrary PHP code via the log parameter.
network
low complexity
netgear nuuo CWE-20
critical
9.8
2016-08-31 CVE-2016-5675 Improper Input Validation vulnerability in multiple products
handle_daylightsaving.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.0.0 through 3.0.0, NUUO Crystal 2.2.1 through 3.2.0, and NETGEAR ReadyNAS Surveillance 1.1.1 through 1.4.1 allows remote attackers to execute arbitrary PHP code via the NTPServer parameter.
network
low complexity
netgear nuuo CWE-20
critical
9.8