MEDIUM🇵🇱 Wersja polska

CVE-2010-2465

CVSS 5.0v2.0pub. 2010-06-25upd. 2026-04-29

The S2 Security NetBox 2.5, 3.3, and 4.0, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download node logs, photographs of persons, and backup files via unspecified HTTP requests.

CVSS Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
  • Linearcorp Emerge 50

    HW
    Linearcorp
    wszystkie wersje
  • Linearcorp Emerge 5000

    HW
    Linearcorp
    wszystkie wersje
  • S2sys Netbox

    HW
    S2Sys
    2.53.34.0
  • Sonitrol Eaccess

    HW
    Sonitrol
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2010-2468HIGH10.0ten sam produkt

The S2 Security NetBox 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, uses a ...

CVE-2010-2466MEDIUM5.0ten sam produkt

The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAcces...

CVE-2010-2467MEDIUM5.0ten sam produkt

The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAcces...

CVE-2010-2469MEDIUM5.0ten sam produkt

The Linear eMerge 50 and 5000 uses a default password of eMerge for the IEIeMerge account, which makes it easi...

CVE-2009-3734MEDIUM5.0ten sam vendor

Unspecified vulnerability in the management console in the S2 Security Linear eMerge Access Control System 2.5...