MEDIUM🇬🇧 English

CVE-2010-2466

CVSS 5.0v2.0pub. 2010-06-25upd. 2026-04-29

The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, does not properly prevent downloading of database backups, which allows remote attackers to obtain sensitive information via requests for full_*.dar files with predictable filenames.

oryginał EN
CVSS Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
  • Linearcorp Emerge 50

    HW
    Linearcorp
    wszystkie wersje
  • Linearcorp Emerge 5000

    HW
    Linearcorp
    wszystkie wersje
  • S2sys Netbox

    HW
    S2Sys
    2.53.3
  • Sonitrol Eaccess

    HW
    Sonitrol
    wszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2010-2468HIGH10.0ten sam produkt

The S2 Security NetBox 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, uses a ...

CVE-2010-2465MEDIUM5.0ten sam produkt

The S2 Security NetBox 2.5, 3.3, and 4.0, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, s...

CVE-2010-2467MEDIUM5.0ten sam produkt

The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAcces...

CVE-2010-2469MEDIUM5.0ten sam produkt

The Linear eMerge 50 and 5000 uses a default password of eMerge for the IEIeMerge account, which makes it easi...

CVE-2009-3734MEDIUM5.0ten sam vendor

Unspecified vulnerability in the management console in the S2 Security Linear eMerge Access Control System 2.5...