CVE-2022-23227CISA KEVEPSS p98.7%

CVE-2022-23227NUUO NVRmini2 Devices Missing Authentication Vulnerability

NUUO / NVRmini2 Devices

Description

NUUO NVRmini2 devices contain a missing authentication vulnerability that allows an unauthenticated attacker to upload an encrypted TAR archive, which can be abused to add arbitrary users.

Scoring

EPSS49.43% probability of exploitation · percentile 98.7% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2024-12-18

(incoming)1

TypeTargetConfidenceTier
KEVEntryNUUO NVRmini2 Devices Missing Authentication Vulnerability kev-cve-2022-232270%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
NUUO NVRmini Devices OS Command Injection Vulnerability
CVE
CVE-2026-9212
CVE
CVE-2026-22898
CVE
CVE-2026-20998
CVE
QNAP VioStor NVR OS Command Injection Vulnerability
CVE
CVE-2026-34908
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.