CVE-2018-17894

CVE-2018-17894

Vendor Nuuo
Product NUUO CMS
Weakness CWE-798 · Hardcoded credentials
Published October 12, 2018
Last update September 17, 2024

CVSS base score

What the vulnerability does

01Description

NUUO CMS all versions 3.1 and prior, The application creates default accounts that have hard-coded passwords, which could allow an attacker to gain privileged access.

Key dates

02Disclosure timeline

October 12, 2018 CVE published
September 17, 2024 Record updated