What is CVE-2022-31269?

CVE-2022-31269 is a vulnerability in N/a. Published 2022-08-25.

Is CVE-2022-31269 known to be exploited?

19 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2022-31269

Nortek Linear eMerge E3-Series devices through 0.32-09c place admin credentials in /test.txt that allow an attacker to open a building's doors. (This occurs in situations where the CVE-2019-7271 default credentials have been changed.)

EPSS: 0.810 (99.2th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

omarhashem123/CVE-2022-31269
Henry4E36/CVE-2022-31269
ARPSyndicate/kenzer-templates
Mr-xn/Penetration_
NaInSec/CVE-PoC-in-GitHub
SYRTI/POC_
WhooAmii/POC_
k0mi-tg/CVE-POC
karimhabush/cyberowl
ARPSyndicate/cve-scores

References

eg.linkedin.com/in/omar-1-hashem (x_refsource_MISC)
www.nortekcontrol.com/access-control/ (x_refsource_MISC)
packetstormsecurity.com/files/167990/Nortek-Linear-eMerge-E3-Series-Credential-… (x_refsource_MISC)
gist.github.com/omarhashem123/71ec9223e90ea76a76096d777d9b945c (x_refsource_MISC)

Frequently asked questions

What is CVE-2022-31269?: CVE-2022-31269 is a vulnerability in N/a. Published 2022-08-25.
Is CVE-2022-31269 known to be exploited?: 19 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.