CVE-2019-7267

Linear eMerge 50P/5000P devices allow Cookie Path Traversal.
References
Link Resource
https://applied-risk.com/labs/advisories Broken Link Not Applicable Third Party Advisory
https://www.applied-risk.com/resources/ar-2019-006 Third Party Advisory
http://packetstormsecurity.com/files/155250/Linear-eMerge50P-5000P-4.6.07-Remote-Code-Execution.html Exploit Third Party Advisory VDB Entry
https://www.us-cert.gov/ics/advisories/icsa-20-184-01 Third Party Advisory US Government Resource
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:nortekcontrol:linear_emerge_50p_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nortekcontrol:linear_emerge_50p:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:nortekcontrol:linear_emerge_5000p_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nortekcontrol:linear_emerge_5000p:-:*:*:*:*:*:*:*

Information

Published : 2019-07-02 10:15

Updated : 2022-10-13 12:49


NVD link : CVE-2019-7267

Mitre link : CVE-2019-7267


JSON object : View

CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Advertisement

dedicated server usa

Products Affected

nortekcontrol

  • linear_emerge_5000p
  • linear_emerge_5000p_firmware
  • linear_emerge_50p
  • linear_emerge_50p_firmware