nortekcontrol

Top products

The 15 most recently published vulnerabilities affecting nortekcontrol.

• CVE-2022-31798Nortek Linear eMerge E3-Series 0.32-07p devices are vulnerable to /card_scan.php?CardFormatNo= XSS with session fixation (via PHPSESSID) when they are chained together. This would allow an attacker...6.1Aug 25, 2022
• CVE-2022-31499Nortek Linear eMerge E3-Series devices before 0.32-08f allow an unauthenticated attacker to inject OS commands via ReaderNo. NOTE: this issue exists because of an incomplete fix for CVE-2019-7256.9.8Aug 25, 2022
• CVE-2022-31269Nortek Linear eMerge E3-Series devices through 0.32-09c place admin credentials in /test.txt that allow an attacker to open a building's doors. (This occurs in situations where the CVE-2019-7271 de...8.2Aug 25, 2022
• CVE-2019-7252Linear eMerge E3-Series devices have Default Credentials.9.8Jul 2, 2019
• CVE-2019-7253Linear eMerge E3-Series devices allow Directory Traversal.9.8Jul 2, 2019
• CVE-2019-7254Linear eMerge E3-Series devices allow File Inclusion.7.5Jul 2, 2019
• CVE-2019-7255Linear eMerge E3-Series devices allow XSS.6.1Jul 2, 2019
• CVE-2019-7257Linear eMerge E3-Series devices allow Unrestricted File Upload.10.0Jul 2, 2019
• CVE-2019-7258Linear eMerge E3-Series devices allow Privilege Escalation.8.8Jul 2, 2019
• CVE-2019-7259Linear eMerge E3-Series devices allow Authorization Bypass with Information Disclosure.8.8Jul 2, 2019
• CVE-2019-7260Linear eMerge E3-Series devices have Cleartext Credentials in a Database.9.8Jul 2, 2019
• CVE-2019-7261Linear eMerge E3-Series devices have Hard-coded Credentials.9.8Jul 2, 2019
• CVE-2019-7262Linear eMerge E3-Series devices allow Cross-Site Request Forgery (CSRF).8.8Jul 2, 2019
• CVE-2019-7263Linear eMerge E3-Series devices have a Version Control Failure.9.8Jul 2, 2019
• CVE-2019-7264Linear eMerge E3-Series devices allow a Stack-based Buffer Overflow on the ARM platform.9.8Jul 2, 2019