Known Vulnerabilities for products from Nortekcontrol
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Nortekcontrol".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-7271 | Nortek Linear eMerge 50P/5000P devices have Default Credentials. | 9.8 - CRITICAL | 2019-07-01 | 2020-08-24 |
| CVE-2019-7270 | Linear eMerge 50P/5000P devices allow Cross-Site Request Forgery (CSRF). | 8.8 - HIGH | 2019-07-02 | 2022-10-14 |
| CVE-2019-7269 | Linear eMerge 50P/5000P devices allow Authenticated Command Injection with root Code Execution. | 9.8 - CRITICAL | 2019-07-02 | 2022-10-13 |
| CVE-2019-7268 | Linear eMerge 50P/5000P devices allow Unauthenticated File Upload. | 10 - CRITICAL | 2019-07-02 | 2022-10-13 |
| CVE-2019-7267 | Linear eMerge 50P/5000P devices allow Cookie Path Traversal. | 9.8 - CRITICAL | 2019-07-02 | 2022-10-13 |
| CVE-2019-7266 | Linear eMerge 50P/5000P devices allow Authentication Bypass. | 9.8 - CRITICAL | 2019-07-02 | 2022-10-13 |
| CVE-2019-7265 | Linear eMerge E3-Series devices allow Remote Code Execution (root access over SSH). | 9.8 - CRITICAL | 2019-07-02 | 2022-10-13 |
| CVE-2019-7264 | Linear eMerge E3-Series devices allow a Stack-based Buffer Overflow on the ARM platform. | 9.8 - CRITICAL | 2019-07-02 | 2020-08-24 |
| CVE-2019-7263 | Linear eMerge E3-Series devices have a Version Control Failure. | 9.8 - CRITICAL | 2019-07-02 | 2019-07-03 |
| CVE-2019-7262 | Linear eMerge E3-Series devices allow Cross-Site Request Forgery (CSRF). | 8.8 - HIGH | 2019-07-02 | 2022-10-14 |
| CVE-2019-7261 | Linear eMerge E3-Series devices have Hard-coded Credentials. | 9.8 - CRITICAL | 2019-07-02 | 2022-10-14 |
| CVE-2019-7260 | Linear eMerge E3-Series devices have Cleartext Credentials in a Database. | 9.8 - CRITICAL | 2019-07-02 | 2020-08-24 |
| CVE-2019-7259 | Linear eMerge E3-Series devices allow Authorization Bypass with Information Disclosure. | 8.8 - HIGH | 2019-07-02 | 2022-10-14 |
| CVE-2019-7258 | Linear eMerge E3-Series devices allow Privilege Escalation. | 8.8 - HIGH | 2019-07-02 | 2022-10-14 |
| CVE-2019-7257 | Linear eMerge E3-Series devices allow Unrestricted File Upload. | 10 - CRITICAL | 2019-07-02 | 2022-10-14 |
| CVE-2019-7256 | Linear eMerge E3-Series devices allow Command Injections. | 10 - CRITICAL | 2019-07-02 | 2024-03-26 |
| CVE-2019-7255 | Linear eMerge E3-Series devices allow XSS. | 6.1 - MEDIUM | 2019-07-02 | 2022-10-14 |
| CVE-2019-7254 | Linear eMerge E3-Series devices allow File Inclusion. | 7.5 - HIGH | 2019-07-02 | 2021-10-04 |
| CVE-2019-7253 | Linear eMerge E3-Series devices allow Directory Traversal. | 9.8 - CRITICAL | 2019-07-02 | 2019-07-03 |
| CVE-2019-7252 | Linear eMerge E3-Series devices have Default Credentials. | 9.8 - CRITICAL | 2019-07-02 | 2020-08-24 |