CVE-2022-38627: SQL Injection
First published: Tue Jan 03 2023(Updated: )
Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a SQL injection vulnerability via the idt parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nice Linear eMerge E3-Series | =0.32-07e | |
| Nice Linear eMerge E3-Series | =0.32-07p | |
| Nice Linear eMerge E3-Series | =0.32-08e | |
| Nice Linear eMerge E3-Series | =0.32-08f | |
| Nice Linear eMerge E3-Series | =0.32-09a | |
| Nice Linear eMerge E3-Series | =0.32-09c | |
| Nice Linear eMerge E3-Series |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-38627?
The severity of CVE-2022-38627 is rated as critical with a CVSS score of 9.8.
What software versions of Nortek Linear eMerge E3-Series are affected by CVE-2022-38627?
The affected versions of Nortek Linear eMerge E3-Series include 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e.
How does CVE-2022-38627 vulnerability occur?
CVE-2022-38627 vulnerability occurs through a SQL injection via the idt parameter in Nortek Linear eMerge E3-Series.
- agent/softwarecombine
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/type
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/niceforyou
- canonical/nice linear emerge e3-series
- version/nice linear emerge e3-series/0.32-07e
- version/nice linear emerge e3-series/0.32-07p
- version/nice linear emerge e3-series/0.32-08e
- version/nice linear emerge e3-series/0.32-08f
- version/nice linear emerge e3-series/0.32-09a
- version/nice linear emerge e3-series/0.32-09c