CVE-2022-38628

Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a cross-site scripting XSS vulnerability which is chained with a local session fixation. This vulnerability allows attackers to escalate privileges via unspecified...

CVE-2019-7253

Linear eMerge E3-Series devices allow Directory Traversal...

CVE-2019-7262

Linear eMerge E3-Series devices allow Cross-Site Request Forgery CSRF...

CVE-2019-7263

Linear eMerge E3-Series devices have a Version Control Failure...

CVE-2019-7258

Linear eMerge E3-Series devices allow Privilege Escalation...

CVE-2019-7261

Linear eMerge E3-Series devices have Hard-coded Credentials...

EUVD-2019-16808

Malware in sbrugna...

EUVD-2019-16804

Malware in sbrugna...

EUVD-2019-16807

Malware in sbrugna...

EUVD-2019-16797

Malware in sbrugna...

EUVD-2022-41205

Malicious code in bioql PyPI...

VulnCheck KEV: CVE-2022-38627

Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a SQL injection vulnerability via the idt parameter...

CVE-2019-7256

Linear eMerge E3-Series devices allow Command Injections...

CVE-2019-7255

Linear eMerge E3-Series devices allow XSS...

CVE-2019-7264

Linear eMerge E3-Series devices allow a Stack-based Buffer Overflow on the ARM platform...

CVE-2019-7265

Linear eMerge E3-Series devices allow Remote Code Execution root access over SSH...

CVE-2024-9441

The Linear eMerge e3-Series through version 1.00-07 is vulnerable to an OS command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary OS commands via the loginid parameter when invoking the forgotpassword functionality over HTTP...

CVE-2024-9441

The Linear eMerge e3-Series through version 1.00-07 is vulnerable to an OS command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary OS commands via the loginid parameter when invoking the forgotpassword functionality over HTTP...

CVE-2024-9441 Linear eMerge e3-Series Forgot Password Command Injection

The Linear eMerge e3-Series through version 1.00-07 is vulnerable to an OS command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary OS commands via the loginid parameter when invoking the forgotpassword functionality over HTTP...

CVE-2024-9441 Linear eMerge e3-Series Forgot Password Command Injection

The Linear eMerge e3-Series through version 1.00-07 is vulnerable to an OS command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary OS commands via the loginid parameter when invoking the forgotpassword functionality over HTTP...