Nortekcontrol Linear Emerge 5000P Firmware vulnerabilities
6 known vulnerabilities affecting nortekcontrol/linear_emerge_5000p_firmware.
Total CVEs
6
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH1
Vulnerabilities
Page 1 of 1
CVE-2019-7269P2CRITICALCVSS 9.8PoC≤ 4.6.072019-07-02
CVE-2019-7269 [CRITICAL] CWE-78 CVE-2019-7269: Linear eMerge 50P/5000P devices allow Authenticated Command Injection with root Code Execution.
Linear eMerge 50P/5000P devices allow Authenticated Command Injection with root Code Execution.
nvd
CVE-2019-7268P2CRITICALCVSS 10.0PoC≤ 4.6.072019-07-02
CVE-2019-7268 [CRITICAL] CWE-434 CVE-2019-7268: Linear eMerge 50P/5000P devices allow Unauthenticated File Upload.
Linear eMerge 50P/5000P devices allow Unauthenticated File Upload.
nvd
CVE-2019-7267P2CRITICALCVSS 9.8PoC≤ 4.6.072019-07-02
CVE-2019-7267 [CRITICAL] CWE-22 CVE-2019-7267: Linear eMerge 50P/5000P devices allow Cookie Path Traversal.
Linear eMerge 50P/5000P devices allow Cookie Path Traversal.
nvd
CVE-2019-7266P2CRITICALCVSS 9.8PoC≤ 4.6.072019-07-02
CVE-2019-7266 [CRITICAL] CWE-565 CVE-2019-7266: Linear eMerge 50P/5000P devices allow Authentication Bypass.
Linear eMerge 50P/5000P devices allow Authentication Bypass.
nvd
CVE-2019-7271P2CRITICALCVSS 9.8≤ 4.6.072019-07-01
CVE-2019-7271 [CRITICAL] CWE-522 CVE-2019-7271: Nortek Linear eMerge 50P/5000P devices have Default Credentials.
Nortek Linear eMerge 50P/5000P devices have Default Credentials.
nvd
CVE-2019-7270P3HIGHCVSS 8.8≤ 4.6.072019-07-02
CVE-2019-7270 [HIGH] CWE-352 CVE-2019-7270: Linear eMerge 50P/5000P devices allow Cross-Site Request Forgery (CSRF).
Linear eMerge 50P/5000P devices allow Cross-Site Request Forgery (CSRF).
nvd