Vulnerabilities > Niceforyou > Linear Emerge E3 Access Control Firmware > 0.32.09b
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-13 | CVE-2022-46381 | Cross-site Scripting vulnerability in Niceforyou Linear Emerge E3 Access Control Firmware Certain Linear eMerge E3-Series devices are vulnerable to XSS via the type parameter (e.g., to the badging/badge_template_v0.php component). | 6.1 |
| 2022-12-13 | CVE-2022-38628 | Session Fixation vulnerability in Niceforyou Linear Emerge E3 Access Control Firmware Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a cross-site scripting (XSS) vulnerability which is chained with a local session fixation. | 6.1 |