Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The S2 Security NetBox 2.5, 3.3, and 4.0, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download node logs, photographs of persons, and backup files via unspecified HTTP requests.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
S2 Security NetBox web根目录权限许可和访问控制漏洞
Vulnerability Description
S2 Security NetBox被用在Linear eMerge 50 和 5000 和 Sonitrol eAccess上时,将敏感信息存储在web根目录下,并且没有设置足够的访问控制,远程攻击者可以通过未明的HTTP请求下载节点日志,人员照片和备份文件。
CVSS Information
N/A
Vulnerability Type
N/A