Описание
Nortek Linear eMerge E3-Series devices through 0.32-09c place admin credentials in /test.txt that allow an attacker to open a building's doors. (This occurs in situations where the CVE-2019-7271 default credentials have been changed.)
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- Not Applicable
- ExploitThird Party Advisory
- Product
- ExploitThird Party AdvisoryVDB Entry
- Not Applicable
- ExploitThird Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 0.32-09c (включая)
Одновременно
cpe:2.3:o:nortekcontrol:emerge_e3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nortekcontrol:emerge_e3:-:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.81013
Высокий
8.2 High
CVSS3
Дефекты
CWE-798
Связанные уязвимости
CVSS3: 8.2
github
больше 3 лет назад
Nortek Linear eMerge E3-Series devices through 0.32-09c place admin credentials in /test.txt that allow an attacker to open a building's doors. (This occurs in situations where the CVE-2019-7271 default credentials have been changed.)
EPSS
Процентиль: 99%
0.81013
Высокий
8.2 High
CVSS3
Дефекты
CWE-798