Login Sign Up

CVE-2019-7252

9.8 CRITICAL
Authentication Bypass

📋 TL;DR

Linear eMerge E3-Series access control systems have hardcoded default credentials that cannot be changed. This allows attackers to gain administrative access to physical security systems, affecting organizations using these devices for building access control.

💻 Affected Systems

Products:
  • Linear eMerge E3-Series
Versions: All versions prior to patching
Operating Systems: Embedded system
Default Config Vulnerable: ⚠️ Yes
Notes: Hardcoded credentials cannot be changed by administrators, making all default installations vulnerable.

📦 What is this software?

Linear Emerge Elite Firmware by Nortekcontrol

View all CVEs affecting Linear Emerge Elite Firmware →

Linear Emerge Essential Firmware by Nortekcontrol

View all CVEs affecting Linear Emerge Essential Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete physical security compromise allowing unauthorized building access, door control manipulation, and potential physical harm or theft.

🟠

Likely Case

Unauthorized access to secure areas, door lock manipulation, and surveillance system access.

🟢

If Mitigated

Limited impact if devices are isolated on separate networks with strict access controls.

🌐 Internet-Facing: HIGH - Devices exposed to internet can be directly compromised with minimal effort.
🏢 Internal Only: HIGH - Even internally, default credentials allow easy privilege escalation.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: CONFIRMED
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Attackers can use default credentials documented in public advisories to gain admin access without authentication.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Contact vendor for specific firmware updates

Vendor Advisory: https://www.linearcorp.com/support/security-advisories

Restart Required: Yes

Instructions:

1. Contact Linear support for latest firmware. 2. Backup configuration. 3. Apply firmware update. 4. Change all default credentials. 5. Restart devices.

🔧 Temporary Workarounds

Network segmentation

all

Isolate eMerge devices on separate VLAN with strict firewall rules

Access control lists

all

Implement IP-based restrictions to limit management interface access

🧯 If You Can't Patch

  • Segment devices on isolated network with no internet access
  • Implement strict firewall rules allowing only authorized management IPs

🔍 How to Verify

Check if Vulnerable:

Attempt to login to web interface using default credentials documented in advisory

Check Version:

Check firmware version in device web interface or contact vendor

Verify Fix Applied:

Verify default credentials no longer work and new strong credentials are required

📡 Detection & Monitoring

Log Indicators:

  • Failed login attempts followed by successful admin login
  • Multiple authentication attempts from single source

Network Indicators:

  • Unauthorized access to management ports (typically 80/443)
  • Traffic to/from unexpected IP addresses

SIEM Query:

source_ip="*" AND (event_type="authentication" AND result="success") AND user="admin" AND device_type="eMerge"

📊 Metadata

CVE ID: CVE-2019-7252
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-1188
Published: July 2, 2019
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2019-7252, you might also want to check these:

CVE-2025-41672 10.0

This critical vulnerability allows remote unauthenticated attackers to generate valid JWT tokens usi...

Same vulnerability type (CWE-1188)
CVE-2024-2912 10.0

This CVE describes a critical insecure deserialization vulnerability in BentoML that allows remote a...

Same vulnerability type (CWE-1188)
CVE-2024-0001 10.0

A local administrative account intended for initial FlashArray configuration remains active after se...

Same vulnerability type (CWE-1188)