Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nortekcontrol vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-31269
Nortek Linear eMerge E3-Series devices up to and including 0.32-09c place admin credentials in /test.txt that allow an malicious user to open a building's doors. (This occurs in situations where the CVE-2019-7271 default credentials have been changed.)
Nortekcontrol Emerge E3 Firmware
2 Github repositories
10
CVSSv2
CVE-2018-5439
A Command Injection issue exists in Nortek Linear eMerge E3 series Versions V0.32-07e and prior. A remote attacker may be able to execute arbitrary code on a target machine with elevated privileges.
Nortekcontrol Emerge E3 Firmware
NA
CVE-2022-31499
Nortek Linear eMerge E3-Series devices prior to 0.32-08f allow an unauthenticated malicious user to inject OS commands via ReaderNo. NOTE: this issue exists because of an incomplete fix for CVE-2019-7256.
Nortekcontrol Emerge E3 Firmware
1 Github repository
NA
CVE-2022-31798
Nortek Linear eMerge E3-Series 0.32-07p devices are vulnerable to /card_scan.php?CardFormatNo= XSS with session fixation (via PHPSESSID) when they are chained together. This would allow an malicious user to take over an admin account or a user account.
Nortekcontrol Emerge E3 Firmware
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3