CVE-2018-15716

HIGH IN THE WILD

NUUO NVRMini2 3.9.1 - Authenticated Remote Command Injection via upgrade_handle.php

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2018-15716 has been observed exploited in the wild (reported by InTheWild.io). EIP tracks 1 public exploit from researchers including Artem Metla.

AI-analyzed exploit summary This exploit leverages an authenticated command injection vulnerability in NUUO NVRMini2 by bypassing input filters via hex encoding and command substitution. It executes arbitrary commands by manipulating the 'uploaddir' parameter in 'upgrade_handle.php'.

Description

NUUO NVRMini2 version 3.9.1 is vulnerable to authenticated remote command injection. An attacker can send crafted requests to upgrade_handle.php to execute OS commands as root.

Exploits (1)

exploitdb WORKING POC
by Artem Metla · pythonwebappsphp
https://www.exploit-db.com/exploits/45948

This exploit leverages an authenticated command injection vulnerability in NUUO NVRMini2 by bypassing input filters via hex encoding and command substitution. It executes arbitrary commands by manipulating the 'uploaddir' parameter in 'upgrade_handle.php'.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: NUUO NVRMini2 firmware 3.9.1
Auth required
Prerequisites: Valid credentials for the target system · Network access to the target device
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory x_refsource_misc
https://www.tenable.com/security/research/tra-2018-41
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/106059
Exploit, Third Party Advisory x_refsource_misc
https://github.com/tenable/poc/tree/master/nuuo/nvrmini2/cve_2018_15716
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/45948/

Scores

CVSS v3 8.8
EPSS 0.1850
EPSS Percentile 96.9%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

InTheWild.io 2017-10-01
CWE
CWE-78
Status published
Products (1)
nuuo/nvrmini2_firmware 3.9.1
Published Nov 30, 2018
Tracked Since Feb 18, 2026