CRITICAL🇵🇱 Wersja polska

CVE-2019-7269

CVSS 9.8v3.1pub. 2019-07-02upd. 2024-11-21

Linear eMerge 50P/5000P devices allow Authenticated Command Injection with root Code Execution.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Nortekcontrol Linear Emerge 5000p

    HW
    Nortekcontrol
    wszystkie wersje
  • Nortekcontrol Linear Emerge 5000p Firmware

    OS
    Nortekcontrol
    ≤ 4.6.07
  • Nortekcontrol Linear Emerge 50p

    HW
    Nortekcontrol
    wszystkie wersje
  • Nortekcontrol Linear Emerge 50p Firmware

    OS
    Nortekcontrol
    ≤ 4.6.07
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCECommand Injection
CWE
References

Related vulnerabilities

CVE-2019-7266CRITICAL9.8ten sam produkt

Linear eMerge 50P/5000P devices allow Authentication Bypass.

CVE-2019-7267CRITICAL9.8ten sam produkt

Linear eMerge 50P/5000P devices allow Cookie Path Traversal.

CVE-2019-7268CRITICAL10.0ten sam produkt

Linear eMerge 50P/5000P devices allow Unauthenticated File Upload.

CVE-2019-7271CRITICAL9.8ten sam produkt

Nortek Linear eMerge 50P/5000P devices have Default Credentials.

CVE-2019-7270HIGH8.8ten sam produkt

Linear eMerge 50P/5000P devices allow Cross-Site Request Forgery (CSRF).