Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-17888

NUUO CMS all versions 3.1 and prior, The application uses a session identification mechanism that could allow attackers to obtain the active session ID, which could allow arbitrary remote code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.419
EPSS Ranking 97.3%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
Products affected by CVE-2018-17888
  • Nuuo » Nuuo Cms » Version: 1.3.1
    cpe:2.3:a:nuuo:nuuo_cms:1.3.1
  • Nuuo » Nuuo Cms » Version: 1.3.3
    cpe:2.3:a:nuuo:nuuo_cms:1.3.3
  • Nuuo » Nuuo Cms » Version: 1.5.0
    cpe:2.3:a:nuuo:nuuo_cms:1.5.0
  • Nuuo » Nuuo Cms » Version: 1.5.2
    cpe:2.3:a:nuuo:nuuo_cms:1.5.2
  • Nuuo » Nuuo Cms » Version: 1.6.0
    cpe:2.3:a:nuuo:nuuo_cms:1.6.0
  • Nuuo » Nuuo Cms » Version: 1.7.0
    cpe:2.3:a:nuuo:nuuo_cms:1.7.0
  • Nuuo » Nuuo Cms » Version: 2.0
    cpe:2.3:a:nuuo:nuuo_cms:2.0
  • Nuuo » Nuuo Cms » Version: 2.1
    cpe:2.3:a:nuuo:nuuo_cms:2.1
  • Nuuo » Nuuo Cms » Version: 2.10.0
    cpe:2.3:a:nuuo:nuuo_cms:2.10.0
  • Nuuo » Nuuo Cms » Version: 2.11.0
    cpe:2.3:a:nuuo:nuuo_cms:2.11.0
  • Nuuo » Nuuo Cms » Version: 2.3
    cpe:2.3:a:nuuo:nuuo_cms:2.3
  • Nuuo » Nuuo Cms » Version: 2.3.1
    cpe:2.3:a:nuuo:nuuo_cms:2.3.1
  • Nuuo » Nuuo Cms » Version: 2.3.2
    cpe:2.3:a:nuuo:nuuo_cms:2.3.2
  • Nuuo » Nuuo Cms » Version: 2.4.0
    cpe:2.3:a:nuuo:nuuo_cms:2.4.0
  • Nuuo » Nuuo Cms » Version: 2.5.0
    cpe:2.3:a:nuuo:nuuo_cms:2.5.0
  • Nuuo » Nuuo Cms » Version: 2.6.0
    cpe:2.3:a:nuuo:nuuo_cms:2.6.0
  • Nuuo » Nuuo Cms » Version: 2.7.0
    cpe:2.3:a:nuuo:nuuo_cms:2.7.0
  • Nuuo » Nuuo Cms » Version: 2.8.0
    cpe:2.3:a:nuuo:nuuo_cms:2.8.0
  • Nuuo » Nuuo Cms » Version: 2.9.0
    cpe:2.3:a:nuuo:nuuo_cms:2.9.0
  • Nuuo » Nuuo Cms » Version: 3.0.0
    cpe:2.3:a:nuuo:nuuo_cms:3.0.0
  • Nuuo » Nuuo Cms » Version: 3.1
    cpe:2.3:a:nuuo:nuuo_cms:3.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved