VDB

CVE-2010-2466

CVE-2010-2466 PUBLISHED CVSS 5 MEDIUM

The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, does not properly prevent downloading of database backups, which allows remote attackers to obtain sensitive information via requests for full_*.dar files with predictable filenames.

EPSS 0.85% · 75.3th percentile

Risk Scores

CVSS 2.0
5
EPSS Score
0.85%
75.3th percentile

Affected Products

VendorProductVersions
n/an/an/a
sonitroleaccess
s2sysnetbox2.5, 3.3
linearcorpemerge_5000
linearcorpemerge_50

Timeline

  • Jun 25, 2010 CVE Published
  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • May 20, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Feb 9, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 2, 2023 EPSS Score
  • May 25, 2023 EPSS Score
  • Jul 17, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›