Last active
August 7, 2022 19:53
-
-
Save omarhashem123/71ec9223e90ea76a76096d777d9b945c to your computer and use it in GitHub Desktop.
CVE-2022-31269 PoC
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Exploit Title: Nortek Linear eMerge E3-Series - Information Disclosure leads to access admin dashboard | |
# Exploit Author: Omar Hashim | |
# Version: 0.32-07p,0.32-07e,0.32-08f,0.32-09c | |
# Vendor home page : https://www.nortekcontrol.com/access-control/ | |
# Vendor home page : https://linear-solutions.com/ | |
# Authentication Required: No | |
# CVE : CVE-2022-31269 | |
# Description | |
==================== | |
Admin credentials are stored in clear text at the endpoint /test.txt | |
(This occurs in situations where the default credentials admin:admin have been | |
changed.) Allows an unauthenticated attacker to obtain admini credentials, access | |
the admin dashboard of Linear eMerge E3-Series devices, control entire building | |
doors, cameras, elevator, etc... and access information about employees who can | |
access the building and take control of the entire building | |
#Proof Of Concept: | |
==================== | |
http://<HOST:PORT>/test.txt |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment