Vulnerabilities > Nortekcontrol > Linear Emerge Elite Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-07-02 CVE-2019-7255 Cross-site Scripting vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow XSS.
network
low complexity
nortekcontrol CWE-79
6.1
6.1
2019-07-02 CVE-2019-7254 Path Traversal vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow File Inclusion.
network
low complexity
nortekcontrol CWE-22
5.0
5.0
2019-07-02 CVE-2019-7252 Insecure Default Initialization of Resource vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices have Default Credentials.
network
low complexity
nortekcontrol CWE-1188
5.0
5.0
2019-07-02 CVE-2019-7260 Insufficiently Protected Credentials vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices have Cleartext Credentials in a Database.
network
low complexity
nortekcontrol CWE-522
5.0
5.0