Skip to main content
CVE-2019-7256 CRITICAL POC KEV THREAT Emergency

Linear eMerge E3-Series devices allow Command Injections. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Linear Emerge Essential Firmware Linear Emerge Elite Firmware
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
97.1%
CVE-2019-7257 CRITICAL POC THREAT Act Now

Linear eMerge E3-Series devices allow Unrestricted File Upload. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Linear Emerge Essential Firmware Linear Emerge Elite Firmware
NVD Exploit-DB
CVSS 3.1
10.0
EPSS
70.0%
CVE-2019-7268 CRITICAL POC Act Now

Linear eMerge 50P/5000P devices allow Unauthenticated File Upload. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Linear Emerge 50P Firmware Linear Emerge 5000P Firmware
NVD
CVSS 3.1
10.0
EPSS
6.5%
CVE-2019-13177 CRITICAL POC PATCH Act Now

verification.py in django-rest-registration (aka Django REST Registration library) before 0.5.0 relies on a static string for signatures (i.e., the Django Signing API is misused), which allows remote. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Jwt Attack Python Information Disclosure Django Rest Registration
NVD GitHub
CVSS 3.0
9.8
EPSS
1.6%
CVE-2019-7261 CRITICAL POC Act Now

Linear eMerge E3-Series devices have Hard-coded Credentials. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Linear Emerge Essential Firmware Linear Emerge Elite Firmware
NVD
CVSS 3.1
9.8
EPSS
5.5%
CVE-2019-7269 CRITICAL POC THREAT Act Now

Linear eMerge 50P/5000P devices allow Authenticated Command Injection with root Code Execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Linear Emerge 50P Firmware Linear Emerge 5000P Firmware
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
40.0%
CVE-2019-7267 CRITICAL POC THREAT Act Now

Linear eMerge 50P/5000P devices allow Cookie Path Traversal. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Linear Emerge 50P Firmware Linear Emerge 5000P Firmware
NVD
CVSS 3.1
9.8
EPSS
21.5%
CVE-2019-7265 CRITICAL POC THREAT Act Now

Linear eMerge E3-Series devices allow Remote Code Execution (root access over SSH). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass RCE Linear Emerge Essential Firmware Linear Emerge Elite Firmware
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
23.1%
CVE-2019-10137 CRITICAL Act Now

A path traversal flaw was found in spacewalk-proxy, all versions through 2.9, in the way the proxy processes cached client tokens. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal RCE Satellite Spacewalk
NVD
CVSS 3.0
9.8
EPSS
3.1%
CVE-2019-7253 CRITICAL Act Now

Linear eMerge E3-Series devices allow Directory Traversal. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Linear Emerge Essential Firmware Linear Emerge Elite Firmware
NVD
CVSS 3.0
9.8
EPSS
3.0%
CVE-2019-7252 CRITICAL Act Now

Linear eMerge E3-Series devices have Default Credentials. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Linear Emerge Essential Firmware Linear Emerge Elite Firmware
NVD
CVSS 3.0
9.8
EPSS
4.9%
CVE-2019-7260 CRITICAL Act Now

Linear eMerge E3-Series devices have Cleartext Credentials in a Database. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Linear Emerge Essential Firmware Linear Emerge Elite Firmware
NVD
CVSS 3.0
9.8
EPSS
6.6%
CVE-2019-7266 CRITICAL Act Now

Linear eMerge 50P/5000P devices allow Authentication Bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Linear Emerge 50P Firmware Linear Emerge 5000P Firmware
NVD
CVSS 3.1
9.8
EPSS
4.6%
CVE-2019-7264 CRITICAL Act Now

Linear eMerge E3-Series devices allow a Stack-based Buffer Overflow on the ARM platform. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Memory Corruption Linear Emerge Essential Firmware Linear Emerge Elite Firmware
NVD
CVSS 3.0
9.8
EPSS
2.2%
CVE-2019-7263 CRITICAL Act Now

Linear eMerge E3-Series devices have a Version Control Failure. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Linear Emerge Essential Firmware Linear Emerge Elite Firmware
NVD
CVSS 3.0
9.8
EPSS
1.8%
CVE-2019-12594 CRITICAL Act Now

DOSBox 0.74-2 has Incorrect Access Control. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Dosbox Debian Linux
NVD
CVSS 3.0
9.8
EPSS
6.7%
CVE-2019-4087 CRITICAL Act Now

IBM Spectrum Protect Servers 7.1 and 8.1 and Storage Agents are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by servers and storage agents in response to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow IBM RCE Memory Corruption Spectrum Protect Operations Center
NVD
CVSS 3.1
9.8
EPSS
7.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy