s2sys 漏洞與 CVE 列表（5）

產品（CPE）: — CVE 數: 5

s2sys 漏洞概覽

彙總 s2sys 相關全部產品的 CVE 與安全漏洞情報，包括 CVSS、EPSS、公開時間與漏洞情報資料。

已披露問題常與拒絕服務相關，可能在生產負載與軟體部署場景中帶來應用程式崩潰等暴露風險。

相關漏洞資料主要來源於公開漏洞披露與安全公告，可用於評估歷史漏洞暴露面與修補優先順序。

漏洞分布趨勢（近 24 個月）

CVE	摘要	來源	最高 CVSS	EPSS %	公開時間	更新時間
CVE-2010-2468	The S2 Security NetBox 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, uses a weak hash algorithm for storing the Administrator password, which makes it easier for context-dependent attackers to obtain privileged access by recovering the cleartext of this password.	[email protected]	10.0	0.42%	2010-06-25	2026-04-29
CVE-2010-2467	The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, does not require setting a password for the FTP server that stores database backups, which makes it easier for remote attackers to download backup files via unspecified FTP requests.	[email protected]	5.0	0.48%	2010-06-25	2026-04-29
CVE-2010-2466	The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, does not properly prevent downloading of database backups, which allows remote attackers to obtain sensitive information via requests for full_*.dar files with predictable filenames.	[email protected]	5.0	0.85%	2010-06-25	2026-04-29
CVE-2010-2465	The S2 Security NetBox 2.5, 3.3, and 4.0, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download node logs, photographs of persons, and backup files via unspecified HTTP requests.	[email protected]	5.0	2.08%	2010-06-25	2026-04-29
CVE-2009-3734	Unspecified vulnerability in the management console in the S2 Security Linear eMerge Access Control System 2.5.x allows remote attackers to cause a denial of service (configuration reset) via a request to a crafted URI.	[email protected]	5.0	2.27%	2010-01-05	2026-04-23

cvelogic Threat Intelligence