Nice CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

CRITICAL Nice CVE published 2025-04-24

CVE-2024-9441

CVE-2024-9441 affects Nice Linear eMerge E3 systems through version 1.00-07 and is rated critical (CVSS 9.8). According to the CISA CSAF advisory, a remote, unauthenticated attacker can execute arbitrary OS commands by abusing the login_id parameter during the forgot_password HTTP functionality. The advisory was first published on 2025-04-24 and later revised on 2025-05-06 for typo fixes. Nice did not ind [truncated]

Known exploited Nice CVE published 2024-03-25

CVE-2019-7256

CVE-2019-7256 affects Nice Linear eMerge E3-Series systems and is identified by CISA as a Known Exploited Vulnerability. Because it is listed in KEV, defenders should treat it as actively exploited or credibly targeted and prioritize remediation using the vendor’s firmware guidance and CISA’s advisory references.