Security Advisory

CVE-2022-31798

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-25 22:15:45

Last updated 2024-08-03 07:26:01

Assigner mitre

State PUBLISHED

Description

Nortek Linear eMerge E3-Series 0.32-07p devices are vulnerable to /card_scan.php?CardFormatNo= XSS with session fixation (via PHPSESSID) when they are chained together. This would allow an attacker to take over an admin account or a user account.

← Browse all CVEs View on cve.org ↗