Main Vulnerability Database Vulnerabilities #VU87821

#VU87821 Insufficient Control Flow Management in eMerge E3-Series - CVE-2019-7263

Published: March 26, 2024

Vulnerability identifier: #VU87821

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2019-7263

CWE-ID: CWE-691

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
eMerge E3-Series

Software vendor:
Nice North America

Description

The vulnerability allows a remote attacker to compromise the affected device.

The vulnerability exists due to insufficient control of firmware versions that are allowed to be installed on the device. A remote attacker can downgrade the firmware version to an old and vulnerable release and potentially compromise via known vulnerabilities.

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

External links

https://www.applied-risk.com/resources/ar-2019-005

#VU87821 Insufficient Control Flow Management in eMerge E3-Series - CVE-2019-7263

Description

Remediation

External links

Please verify you're human