Vulnerabilities > Nortekcontrol

DATE CVE VULNERABILITY TITLE RISK
2019-07-02 CVE-2019-7258 Incorrect Authorization vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow Privilege Escalation.
network
low complexity
nortekcontrol CWE-863
6.5
2019-07-02 CVE-2019-7257 Unrestricted Upload of File with Dangerous Type vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow Unrestricted File Upload.
network
low complexity
nortekcontrol CWE-434
7.5
2019-07-02 CVE-2019-7256 OS Command Injection vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow Command Injections.
network
low complexity
nortekcontrol CWE-78
critical
10.0
2019-07-02 CVE-2019-7255 Cross-site Scripting vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow XSS.
4.3
2019-07-02 CVE-2019-7254 Path Traversal vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow File Inclusion.
network
low complexity
nortekcontrol CWE-22
5.0
2019-07-02 CVE-2019-7253 Path Traversal vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow Directory Traversal.
network
low complexity
nortekcontrol CWE-22
7.5
2019-07-02 CVE-2019-7252 Insecure Default Initialization of Resource vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices have Default Credentials.
network
low complexity
nortekcontrol CWE-1188
5.0
2019-07-02 CVE-2019-7262 Cross-Site Request Forgery (CSRF) vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow Cross-Site Request Forgery (CSRF).
6.8
2019-07-02 CVE-2019-7261 Use of Hard-coded Credentials vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices have Hard-coded Credentials.
network
low complexity
nortekcontrol CWE-798
critical
10.0
2019-07-02 CVE-2019-7260 Insufficiently Protected Credentials vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices have Cleartext Credentials in a Database.
network
low complexity
nortekcontrol CWE-522
5.0