漏洞描述
Linear eMerge E3 系列是楼宇管理系统中行业领先的产品之一,因为它是行业中使用最广泛的产品之一。该系统card_scan_decoder.php存在命令执行漏洞,攻击者可通过该漏洞执行系统命令,获取服务器权限。
Linear eMerge E3-Series 门禁控制设备 card_scan_decoder.php 命令执行(CVE-2022-31499)
PoC代码
暂无相关漏洞推荐
- POC CVE-2022-31269: Linear eMerge E3-Series - Information Disclosure
- POC CVE-2022-31499: Nortek Linear eMerge E3-Series <0.32-08f - Remote Command Injection
- POC CVE-2022-31798: Nortek Linear eMerge E3-Series - Cross-Site Scripting
- POC CVE-2022-46381: Linear eMerge E3-Series - Cross-Site Scripting
- POC CVE-2022-38627: Nortek Linear eMerge E3-Series - SQL Injection
- Linear eMerge E3-Series Devices CVE-2019-7254 目录遍历漏洞
- Linear eMerge E3-Series CVE-2019-7256 命令注入漏洞
- Linear eMerge E3-Series Devices CVE-2019-7255 跨站脚本漏洞
- Linear eMerge E3-Series 门禁控制设备 badge_layout_new_v0.php 任意文件上传漏洞(CVE-2019-7257)