Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nortekcontrol vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-31798
Nortek Linear eMerge E3-Series 0.32-07p devices are vulnerable to /card_scan.php?CardFormatNo= XSS with session fixation (via PHPSESSID) when they are chained together. This would allow an malicious user to take over an admin account or a user account.
Nortekcontrol Emerge E3 Firmware
1 Github repository
NA
CVE-2022-31499
Nortek Linear eMerge E3-Series devices prior to 0.32-08f allow an unauthenticated malicious user to inject OS commands via ReaderNo. NOTE: this issue exists because of an incomplete fix for CVE-2019-7256.
Nortekcontrol Emerge E3 Firmware
1 Github repository
10
CVSSv2
CVE-2018-5439
A Command Injection issue exists in Nortek Linear eMerge E3 series Versions V0.32-07e and prior. A remote attacker may be able to execute arbitrary code on a target machine with elevated privileges.
Nortekcontrol Emerge E3 Firmware
NA
CVE-2022-31269
Nortek Linear eMerge E3-Series devices up to and including 0.32-09c place admin credentials in /test.txt that allow an malicious user to open a building's doors. (This occurs in situations where the CVE-2019-7271 default credentials have been changed.)
Nortekcontrol Emerge E3 Firmware
2 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3