CVSS 3.1 Score 6.5 of 10 (medium)


Published Apr 1, 2024


CVE-2016-15038 is a critical vulnerability found in NUUO NVRmini 2 up to version 3.0.8, affecting an unknown function in the file "/deletefile.php". This vulnerability allows for path traversal manipulation through the "filename" argument, enabling remote attacks. The exploit has been publicly disclosed and may be utilized by malicious actors. Remediation measures should be taken to address this issue promptly. The potential danger posed by this vulnerability includes unauthorized access, data loss, and potential compromise of the affected organization's network security.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2016-15038 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options