Security Advisory

CVE-2024-9441

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-02 18:50:10

Last updated 2024-10-02 19:08:03

Assigner VulnCheck

State PUBLISHED

Description

The Linear eMerge e3-Series through version 1.00-07 is vulnerable to an OS command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary OS commands via the login_id parameter when invoking the forgot_password functionality over HTTP.

← Browse all CVEs View on cve.org ↗