Vulnerabilities > Nortekcontrol > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-08-25 CVE-2022-31798 Session Fixation vulnerability in Nortekcontrol Emerge E3 Firmware 0.3207E/0.3207P
Nortek Linear eMerge E3-Series 0.32-07p devices are vulnerable to /card_scan.php?CardFormatNo= XSS with session fixation (via PHPSESSID) when they are chained together.
network
low complexity
nortekcontrol CWE-384
6.1
6.1
2019-07-02 CVE-2019-7255 Cross-site Scripting vulnerability in Nortekcontrol products
Linear eMerge E3-Series devices allow XSS.
network
low complexity
nortekcontrol CWE-79
6.1
6.1