CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

893 matches found

Cvelist•added 2019/07/02 6:54 p.m.•19 views

CVE-2019-7252

Linear eMerge E3-Series devices have Default Credentials...

9.6AI score0.04854EPSS

Exploits0References2

CVE•added 2019/07/02 6:54 p.m.•239 views

CVE-2019-7252

CVE-2019-7252 affects Nortek/Nortek Security & Control Linear eMerge E3-Series devices. The connected sources confirm a trust-management issue enabling default credentials to be used by an attacker, potentially leading to privilege escalation and root access. Public records reference default-pass...

9.8CVSS9.5AI score0.04854EPSS

In wildExploits0References2Affected Software1

CVE•added 2019/07/02 6:53 p.m.•121 views

CVE-2019-7253

CVE-2019-7253 affects Nice Linear eMerge E3-Series firmware 1.00-06 and prior, where improper limitation of a pathname to a restricted directory (path traversal) can enable a remote attacker to access restricted files and user data. The Red Hat advisory and CISA/ICS sources confirm a high-severit...

9.8CVSS9.4AI score0.0301EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/07/02 6:53 p.m.•19 views

CVE-2019-7253

Linear eMerge E3-Series devices allow Directory Traversal...

9.6AI score0.0301EPSS

Exploits0References2

Cvelist•added 2019/07/02 6:51 p.m.•38 views

CVE-2019-7254

Linear eMerge E3-Series devices allow File Inclusion...

7.7AI score0.82036EPSS

Exploits8References3

CVE•added 2019/07/02 6:51 p.m.•234 views

CVE-2019-7254

CVE-2019-7254 affects Linear eMerge E3-Series firmware versions 1.00-06 and earlier. The connected sources explicitly describe a Local File Inclusion via directory traversal in the web interface, enabling an unauthenticated or low-privilege attacker to access restricted files (e.g., via a crafted...

7.5CVSS7.5AI score0.82036EPSS

In wildExploits8References3Affected Software1

Cvelist•added 2019/07/02 6:44 p.m.•25 views

CVE-2019-7255

Linear eMerge E3-Series devices allow XSS...

6.3AI score0.55807EPSS

Exploits5References3

CVE•added 2019/07/02 6:44 p.m.•194 views

CVE-2019-7255

CVE-2019-7255 affects Linear eMerge E3-Series devices. The Nuclei template documents a Cross-Site Scripting (XSS) vulnerability exploitable via the layout parameter in the web interface (e.g., badge_template_v0.php?layout=...). Impact: attacker can execute arbitrary script in a user’s browser, wi...

6.1CVSS6.2AI score0.55807EPSS

Exploits5References3Affected Software1

Cvelist•added 2019/07/02 6:16 p.m.•43 views

CVE-2019-7257

Linear eMerge E3-Series devices allow Unrestricted File Upload...

9.6AI score0.69992EPSS

Exploits5References3

CVE•added 2019/07/02 6:16 p.m.•142 views

CVE-2019-7257

The connected ICS advisory confirms CVE-2019-7257 affects Nice Linear eMerge E3-Series devices (firmware 1.00-06 and earlier). The vulnerability is Unrestricted Upload of a File with Dangerous Type, enabling remote code execution by uploading a malicious file to the device’s web root. MITRE CVSS ...

10CVSS9.4AI score0.69992EPSS

Exploits5References3Affected Software1