Vulnerabilities > Nortekcontrol > Linear Emerge Elite Firmware

DATE CVE VULNERABILITY TITLE RISK
2019-07-02 CVE-2019-7258 Incorrect Authorization vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow Privilege Escalation.
network
low complexity
nortekcontrol CWE-863
8.8
8.8
2019-07-02 CVE-2019-7257 Unrestricted Upload of File with Dangerous Type vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow Unrestricted File Upload.
network
low complexity
nortekcontrol CWE-434
critical
 10.0
10
2019-07-02 CVE-2019-7256 OS Command Injection vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow Command Injections.
network
low complexity
nortekcontrol CWE-78
critical
 10.0
10
2019-07-02 CVE-2019-7255 Cross-site Scripting vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow XSS.
network
low complexity
nortekcontrol CWE-79
6.1
6.1
2019-07-02 CVE-2019-7254 Path Traversal vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow File Inclusion.
network
low complexity
nortekcontrol CWE-22
5.0
5.0
2019-07-02 CVE-2019-7253 Path Traversal vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow Directory Traversal.
network
low complexity
nortekcontrol CWE-22
7.5
7.5
2019-07-02 CVE-2019-7252 Insecure Default Initialization of Resource vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices have Default Credentials.
network
low complexity
nortekcontrol CWE-1188
5.0
5.0
2019-07-02 CVE-2019-7262 Cross-Site Request Forgery (CSRF) vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow Cross-Site Request Forgery (CSRF).
network
low complexity
nortekcontrol CWE-352
8.8
8.8
2019-07-02 CVE-2019-7261 Use of Hard-coded Credentials vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices have Hard-coded Credentials.
network
low complexity
nortekcontrol CWE-798
critical
 9.8
9.8
2019-07-02 CVE-2019-7260 Insufficiently Protected Credentials vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices have Cleartext Credentials in a Database.
network
low complexity
nortekcontrol CWE-522
5.0
5.0