EUVD-2019-16797

Malware in sbrugna...

CVE-2024-9441

The Linear eMerge e3-Series through version 1.00-07 is vulnerable to an OS command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary OS commands via the loginid parameter when invoking the forgotpassword functionality over HTTP...

CVE-2024-9441

CVE-2024-9441 affects Nortek Linear eMerge E3 Series (versions up to 1.00-07). Root cause is an OS command injection in the forgot_password flow when using the login_id parameter exposed over HTTP, enabling remote unauthenticated command execution. Documented impact is high (arbitrary OS commands...

Linear eMerge E3-Series Access Controller Command Injection

This module exploits a command injection vulnerability in the Linear eMerge E3-Series Access Controller. The Linear eMerge E3 versions 1.00-06 and below are vulnerable to unauthenticated command injection in cardscandecoder.php via the No and door HTTP GET parameter. Successful exploitation resul...

CVE-2022-38627

Nortek Linear eMerge E3-Series firmware versions 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e are affected by a SQL injection via the idt parameter. The underlying issue is an input injection flaw in the application layer, enabling unauthenticated access to extract sen...

CVE-2022-42710

CVE-2022-42710 affects Nice (formerly Nortek) Linear eMerge E3-Series devices and is a Stored XSS vulnerability. Affected versions include 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e (and 0.32-07e through 0.32-09c per PT-2022-7149). Root cause: insufficient protection...

CVE-2022-38628

Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a cross-site scripting XSS vulnerability which is chained with a local session fixation. This vulnerability allows attackers to escalate privileges via unspecified...

CVE-2022-46381

Linear eMerge E3-Series devices are affected by a Cross-Site Scripting (XSS) vulnerability via the type parameter (examples: badging/badge_template_v0.php). Affected firmware/versions include 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e. The cross-site scripting could ...

CVE-2022-38628

CVE-2022-38628 affects Nortek Linear eMerge E3-Series, versions 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e. The vulnerability is a cross-site scripting (XSS) flaw chained with a local session fixation that enables privilege escalation via unspecified vectors. Public ...

CVE-2022-46381

Certain Linear eMerge E3-Series devices are vulnerable to XSS via the type parameter e.g., to the badging/badgetemplatev0.php component. This affects 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e...

Session fixation

Nortek Linear eMerge E3-Series 0.32-07p devices are vulnerable to /cardscan.php?CardFormatNo= XSS with session fixation via PHPSESSID when they are chained together. This would allow an attacker to take over an admin account or a user account...

CVE-2022-31798

Nortek Linear eMerge E3-Series 0.32-07p is affected by CVE-2022-31798: an XSS vulnerability combined with local session fixation via the PHPSESSID when devices are chained, enabling account takeover of admin or lower-privileged users. The issue arises at the /card_scan.php?CardFormatNo= endpoint....

CVE-2022-31499

CVE-2022-31499 affects Nortek Linear eMerge E3-Series devices prior to version 0.32-08f, where an unauthenticated attacker can inject OS commands via ReaderNo. This extends an earlier issue from CVE-2019-7256 (incomplete fix leading to OS command injection). Public materials from Exploit-DB and C...

CVE-2022-31269

Linear eMerge E3-Series devices are affected by CVE-2022-31269. Admin credentials are stored in clear text at the endpoint /test.txt (when default credentials have been changed), allowing an attacker to obtain admin credentials and access the admin dashboard to control doors, cameras, and related...

CVE-2022-31269

Nortek Linear eMerge E3-Series devices through 0.32-09c place admin credentials in /test.txt that allow an attacker to open a building's doors. This occurs in situations where the CVE-2019-7271 default credentials have been changed...

CVE-2019-7257

Linear eMerge E3-Series devices allow Unrestricted File Upload...

CVE-2019-7258

Linear eMerge E3-Series devices allow Privilege Escalation...

CVE-2019-7255

CVE-2019-7255 affects Linear eMerge E3-Series devices. The Nuclei template documents a Cross-Site Scripting (XSS) vulnerability exploitable via the layout parameter in the web interface (e.g., badge_template_v0.php?layout=...). Impact: attacker can execute arbitrary script in a user’s browser, wi...

CVE-2019-7257

The connected ICS advisory confirms CVE-2019-7257 affects Nice Linear eMerge E3-Series devices (firmware 1.00-06 and earlier). The vulnerability is Unrestricted Upload of a File with Dangerous Type, enabling remote code execution by uploading a malicious file to the device’s web root. MITRE CVSS ...

CVE-2019-7258

CVE-2019-7258 affects Nice Linear eMerge E3-Series firmware 1.00-06 and earlier. Root cause: incorrect authorization (CWE-863) allowing privilege escalation. Impact: attacker could escalate to higher privileges and gain full control of the device; exposure is local to the device’s control interfa...