CVE-2022-38627

CRITICAL EXPLOITED NUCLEI

Nortek Linear eMerge E3-Series <0.32-09 - SQL Injection

Title source: llm

Description

Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e were discovered to contain a SQL injection vulnerability via the idt parameter.

Nuclei Templates (1)

Nortek Linear eMerge E3-Series - SQL Injection

CRITICALby daffainfo,omarhashem666

Shodan: http.title:"Linear eMerge"

References (2)

[Exploit, Third Party Advisory] https://github.com/omarhashem123/Security-Research/blob/main/CVE-2022-38627/CVE-2022-38627.txt

View Exploit ZIP pw:eip

[Exploit, Third Party Advisory] https://github.com/omarhashem123/Security-Research/blob/main/CVE-2022-38627/CVE-2022-38627.yaml

Scores

CVSS v3 9.8

EPSS 0.7160

EPSS Percentile 98.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

VulnCheck KEV 2025-07-13

CWE

CWE-89

Status published

Products (6)

niceforyou/linear_emerge_e3_access_control_firmware 0.32-07e

niceforyou/linear_emerge_e3_access_control_firmware 0.32-07p

niceforyou/linear_emerge_e3_access_control_firmware 0.32-08e

niceforyou/linear_emerge_e3_access_control_firmware 0.32-08f

niceforyou/linear_emerge_e3_access_control_firmware 0.32-09a

niceforyou/linear_emerge_e3_access_control_firmware 0.32-09c

Published Jan 03, 2023

Tracked Since Feb 18, 2026