Linear eMerge E3-Series devices allow Command Injections.
https://www.applied-risk.com/resources/ar-2019-005
https://thehackernews.com/2024/10/experts-warn-of-critical-unpatched.html
https://vulncheck.com/blog/flax-typhoon-linear-merge
https://www.cisa.gov/news-events/ics-advisories/icsa-24-065-01
https://applied-risk.com/labs/advisories
http://packetstormsecurity.com/files/170372/Linear-eMerge-E3-Series-Access-Controller-Command-Injection.html
http://packetstormsecurity.com/files/155272/Linear-eMerge-E3-Access-Controller-Command-Injection.html
http://packetstormsecurity.com/files/155256/Linear-eMerge-E3-1.00-06-card_scan_decoder.php-Command-Injection.html
http://packetstormsecurity.com/files/155255/Linear-eMerge-E3-1.00-06-card_scan.php-Command-Injection.html
Source: Mitre, NVD
Published: 2019-07-02
Updated: 2025-02-06
Known Exploited Vulnerability (KEV)
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Severity: Critical
Base Score: 9.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS: 0.94406