Linear eMerge E3-Series Access Controller Command Injection
Posted by deepcore on January 6, 2023 – 10:33 pm
This Metasploit module exploits a command injection vulnerability in the Linear eMerge E3-Series Access Controller. The Linear eMerge E3 versions 1.00-06 and below are vulnerable to unauthenticated command injection in card_scan_decoder.php via the No and door HTTP GET parameter. Successful exploitation results in command execution as the root user.
Post a reply
You must be logged in to post a comment.