CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

VulnCheck KEV•added 2025/07/13 12:0 a.m.•3 views

VulnCheck KEV: CVE-2022-38627

Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a SQL injection vulnerability via the idt parameter...

9.8CVSS5.9AI score0.72067EPSS

In wildExploits2References92

VulnCheck KEV•added 2023/01/12 12:0 a.m.•0 views

VulnCheck KEV: CVE-2022-31499

Nortek Linear eMerge E3-Series devices before 0.32-08f allow an unauthenticated attacker to inject OS commands via ReaderNo. NOTE: this issue exists because of an incomplete fix for CVE-2019-7256...

10CVSS7.5AI score0.94403EPSS

Exploits19References1

Positive Technologies•added 2022/12/31 12:0 a.m.•2 views

PT-2022-24490

Name of the Vulnerable Software and Affected Versions Nortek Linear eMerge E3-Series versions 0.32-07e through 0.32-09c Description The software contains a SQL injection issue via the idt parameter. This allows for potential compromise of an enterprise building. Recommendations Versions 0.32-07e...

9.8CVSS9.4AI score0.72067EPSS

Exploits2References9

Vulnrichment•added 2022/12/13 12:0 a.m.•6 views

CVE-2022-38628

Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a cross-site scripting XSS vulnerability which is chained with a local session fixation. This vulnerability allows attackers to escalate privileges via unspecified...

6.5AI score0.08307EPSS

Exploits1References1

Positive Technologies•added 2022/12/13 12:0 a.m.•3 views

PT-2022-24491 · Nortek Linear · Emerge E3-Series

Name of the Vulnerable Software and Affected Versions: Nortek Linear eMerge E3-Series versions 0.32-07e through 0.32-09c Description: The issue is related to a cross-site scripting XSS vulnerability that is chained with a local session fixation, allowing attackers to escalate privileges via...

6.1CVSS6.1AI score0.08307EPSS

Exploits1References3

ATTACKERKB•added 2022/08/25 11:15 p.m.•2 views

CVE-2022-31499

Nortek Linear eMerge E3-Series devices before 0.32-08f allow an unauthenticated attacker to inject OS commands via ReaderNo. NOTE: this issue exists because of an incomplete fix for CVE-2019-7256...

10CVSS5.4AI score0.94403EPSS

Exploits19References5

ATTACKERKB•added 2022/08/25 11:15 p.m.•3 views

CVE-2022-31798

Nortek Linear eMerge E3-Series 0.32-07p devices are vulnerable to /cardscan.php?CardFormatNo= XSS with session fixation via PHPSESSID when they are chained together. This would allow an attacker to take over an admin account or a user account...

6.1CVSS5.4AI score0.86613EPSS

Exploits2References5

ATTACKERKB•added 2022/08/25 10:15 p.m.•2 views

CVE-2022-31269

Nortek Linear eMerge E3-Series devices through 0.32-09c place admin credentials in /test.txt that allow an attacker to open a building's doors. This occurs in situations where the CVE-2019-7271 default credentials have been changed...

9.8CVSS7.3AI score0.81013EPSS

Exploits3References6

Positive Technologies•added 2022/08/25 12:0 a.m.•4 views

PT-2022-20767 · Nortek Linear · Emerge E3-Series

Name of the Vulnerable Software and Affected Versions: Nortek Linear eMerge E3-Series devices versions prior to 0.32-08f Description: The issue allows an unauthenticated attacker to inject OS commands via the ReaderNo variable. This is due to an incomplete fix for a previously known issue...

9.8CVSS9.6AI score0.93251EPSS

Exploits3References6

CNVD•added 2019/07/03 12:0 a.m.•2 views

Nortek Security & Control Linear eMerge E3-Series Trust Management Issue Vulnerability (CNVD-2019-34631)

The Nortek Security & Control Linear eMerge E3-Series is an access control device from Nortek Security & Control USA. A vulnerability exists in the Nortek Security & Control Linear eMerge E3-Series due to a trust management issue. An attacker can exploit the vulnerability to obtain a plaintext...

9.8CVSS7AI score0.00476EPSS

Exploits0References1