CVE-2019-7256 - Nice Linear eMerge E3-Series OS Command Injection Vulnerability

Vulnerability Name

Nice Linear eMerge E3-Series OS Command Injection Vulnerability

Description

Nice Linear eMerge E3-Series contains an OS command injection vulnerability that allows an attacker to conduct remote code execution.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Contact the vendor for guidance on remediating firmware, per their advisory.

Additional Notes

https://linear-solutions.com/wp-content/uploads/E3-Bulletin-06-27-2023.pdf, https://www.cisa.gov/news-events/ics-advisories/icsa-24-065-01

https://nvd.nist.gov/vuln/detail/CVE-2019-7256

Related News Articles

Experts Warn of Critical Unpatched Vulnerability in Linear eMerge E3 SystemsOctober 10, 2024