Lucene search
K

33 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:48 a.m.27 views

CVE-2022-31269

Nortek Linear eMerge E3-Series devices through 0.32-09c place admin credentials in /test.txt that allow an attacker to open a building's doors. This occurs in situations where the CVE-2019-7271 default credentials have been changed...

9.8CVSS6.9AI score0.05055EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:46 a.m.34 views

CVE-2022-31798

Nortek Linear eMerge E3-Series 0.32-07p devices are vulnerable to /cardscan.php?CardFormatNo= XSS with session fixation via PHPSESSID when they are chained together. This would allow an attacker to take over an admin account or a user account...

6.1CVSS6.1AI score0.06652EPSS
Exploits2References1
GithubExploit
GithubExploit
added 2024/10/03 11:28 a.m.686 views

Exploit for CVE-2024-9441

Nortek Linear eMerge E3 Pre-Auth RCE PoC CVE-2024-9441...

9.8CVSS7.9AI score0.53697EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2024/07/18 12:0 a.m.11 views

Nortek Linear eMerge E3-Series < 0.32-08f Command Injection

Nortek Linear eMerge E3-Series versions prior to 0.32-08f is affected by a vulnerability allowing an unauthenticated attacker to execute remote commands via a specially forged request. No source data...

10CVSS7.9AI score0.97136EPSS
Exploits19References3
NVD
NVD
added 2023/01/03 9:15 p.m.23 views

CVE-2022-38627

Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a SQL injection vulnerability via the idt parameter...

9.8CVSS9.9AI score0.0427EPSS
Exploits2References2
Prion
Prion
added 2023/01/03 9:15 p.m.21 views

Sql injection

Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a SQL injection vulnerability via the idt parameter...

7.5CVSS9.8AI score0.0427EPSS
Exploits2References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/03 12:0 a.m.15 views

CVE-2022-38627

Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a SQL injection vulnerability via the idt parameter...

8.3AI score0.0427EPSS
Exploits2References2
NVD
NVD
added 2022/12/13 9:15 p.m.31 views

CVE-2022-38628

Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a cross-site scripting XSS vulnerability which is chained with a local session fixation. This vulnerability allows attackers to escalate privileges via unspecified...

6.1CVSS0.00893EPSS
Exploits1References1
NVD
NVD
added 2022/08/25 11:15 p.m.43 views

CVE-2022-31499

Nortek Linear eMerge E3-Series devices before 0.32-08f allow an unauthenticated attacker to inject OS commands via ReaderNo. NOTE: this issue exists because of an incomplete fix for CVE-2019-7256...

9.8CVSS0.64589EPSS
Exploits3References3
NVD
NVD
added 2022/08/25 11:15 p.m.43 views

CVE-2022-31798

Nortek Linear eMerge E3-Series 0.32-07p devices are vulnerable to /cardscan.php?CardFormatNo= XSS with session fixation via PHPSESSID when they are chained together. This would allow an attacker to take over an admin account or a user account...

6.1CVSS0.06652EPSS
Exploits2References3
Prion
Prion
added 2022/08/25 11:15 p.m.36 views

Design/Logic Flaw

Nortek Linear eMerge E3-Series devices before 0.32-08f allow an unauthenticated attacker to inject OS commands via ReaderNo. NOTE: this issue exists because of an incomplete fix for CVE-2019-7256...

7.5CVSS9.6AI score0.97136EPSS
Exploits19References3Affected Software1
NVD
NVD
added 2022/08/25 10:15 p.m.32 views

CVE-2022-31269

Nortek Linear eMerge E3-Series devices through 0.32-09c place admin credentials in /test.txt that allow an attacker to open a building's doors. This occurs in situations where the CVE-2019-7271 default credentials have been changed...

8.2CVSS0.05055EPSS
Exploits3References4
Prion
Prion
added 2022/08/25 10:15 p.m.22 views

Default credentials

Nortek Linear eMerge E3-Series devices through 0.32-09c place admin credentials in /test.txt that allow an attacker to open a building's doors. This occurs in situations where the CVE-2019-7271 default credentials have been changed...

6.4CVSS8.1AI score0.05055EPSS
Exploits3References4Affected Software1
Cvelist
Cvelist
added 2022/08/25 10:9 p.m.39 views

CVE-2022-31499

Nortek Linear eMerge E3-Series devices before 0.32-08f allow an unauthenticated attacker to inject OS commands via ReaderNo. NOTE: this issue exists because of an incomplete fix for CVE-2019-7256...

9.9AI score0.64589EPSS
Exploits3References3
Cvelist
Cvelist
added 2022/08/25 9:59 p.m.49 views

CVE-2022-31269

Nortek Linear eMerge E3-Series devices through 0.32-09c place admin credentials in /test.txt that allow an attacker to open a building's doors. This occurs in situations where the CVE-2019-7271 default credentials have been changed...

8.5AI score0.05055EPSS
Exploits3References4
Packet Storm
Packet Storm
added 2022/08/08 12:0 a.m.289 views

Nortek Linear eMerge E3-Series Account Takeover

Exploit Title: Nortek Linear eMerge E3-Series - Account Take Over Exploit Author: Omar Hashim Version: 0.32-07p Vendor home page: https://www.nortekcontrol.com/access-control/ Vendor home page: https://linear-solutions.com/ Authentication Required: No CVE: CVE-2022-31798 Description...

0.1AI score0.06652EPSS
Exploits2
0day.today
0day.today
added 2022/08/08 12:0 a.m.332 views

Nortek Linear eMerge E3-Series Credential Disclosure Vulnerability

Nortek Linear eMerge E3-Series versions 0.32-07p, 0.32-07e, 0.32-07p, 0.32-08f, and 0.32-09c suffer from an administrative credential disclosure vulnerability. Exploit Title: Nortek Linear eMerge E3-Series - Information Disclosure lead to access admin dashboard Exploit Author: Omar Hashim Version...

8.2CVSS8.2AI score0.05055EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/08/08 12:0 a.m.349 views

Nortek Linear eMerge E3-Series Credential Disclosure

Exploit Title: Nortek Linear eMerge E3-Series - Information Disclosure lead to access admin dashboard Exploit Author: Omar Hashim Version: 0.32-07p,0.32-07e,0.32-07p,0.32-08f,0.32-09c Vendor home page : https://www.nortekcontrol.com/access-control/ Vendor home page : https://linear-solutions.com/...

8.3AI score0.05055EPSS
Exploits3
0day.today
0day.today
added 2022/08/08 12:0 a.m.344 views

Nortek Linear eMerge E3-Series Account Takeover XSS Vulnerability

Nortek Linear eMerge E3-Series version 0.32-07p suffers from a vulnerability where session fixation tied with cross site scripting can allow for account takeover. Exploit Title: Nortek Linear eMerge E3-Series - Account Take Over Exploit Author: Omar Hashim Version: 0.32-07p Vendor home page:...

6.1CVSS6.2AI score0.06652EPSS
Exploits2
0day.today
0day.today
added 2022/08/08 12:0 a.m.387 views

Nortek Linear eMerge E3-Series Command Injection Vulnerability

Exploit Title: Nortek Linear eMerge E3-Series - Blind OS Command Injection Exploit Author: Omar Hashim Version: 0.32-09c Vendor home page: https://www.nortekcontrol.com/access-control/ Vendor home page: https://linear-solutions.com/ Authentication Required: No CVE: CVE-2022-31499 POC:...

9.8CVSS0.4AI score0.64589EPSS
Exploits3
Rows per page
Query Builder