Lucene search
HistoryDec 13, 2022 - 10:15 p.m.
CVE-2022-46381
linear
emerge
e3-series
cve-2022-46381
xss vulnerability
nvd
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
41.8%
Certain Linear eMerge E3-Series devices are vulnerable to XSS via the type parameter (e.g., to the badging/badge_template_v0.php component). This affects 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e.
Affected configurations
Node
niceforyoulinear_emerge_e3_access_controlMatch-
niceforyoulinear_emerge_e3_access_control_firmwareMatch0.32-07e
ORniceforyoulinear_emerge_e3_access_control_firmwareMatch0.32-07p
ORniceforyoulinear_emerge_e3_access_control_firmwareMatch0.32-08e
ORniceforyoulinear_emerge_e3_access_control_firmwareMatch0.32-08f
ORniceforyoulinear_emerge_e3_access_control_firmwareMatch0.32-09a
ORniceforyoulinear_emerge_e3_access_control_firmwareMatch0.32-09b
ORniceforyoulinear_emerge_e3_access_control_firmwareMatch0.32-09c
Related
nuclei
nuclei
Linear eMerge E3-Series - Cross-Site Scripting
2022-12-24 08:06:22
nvd
nvd
CVE-2022-46381
2022-12-13 22:15:10
prion
prion
Design/Logic Flaw
2022-12-13 22:15:00
cvelist
cvelist
CVE-2022-46381
2022-12-13 00:00:00
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
41.8%
Related for CVE-2022-46381