In a PC environment, there will be at least one user with admin rights and maybe other users with limited rights.
Since these users actively go into the Internet and can also actively download malicious code through e-mails extensions, infected web sites, USB sticks and other means, they themselves and their conscious or unconscious behavior pose a security risk.

If you run a Linux PC, the risk is significantly reduced because most attacks are run against Windows based systems.
A PC environment whether Windows or Linux based is in stark contrast to the architecture of the Scan2Net-scanners firmware.

The scanner basically behaves like a web server, of which there are hundreds of millions found on the Internet.
It can be accessed through the network using standard TCP/IP protocols and its HTML based graphical user interface called GUI.

All scanner functions are accessible this way.
You cannot login to the scanner´s Linux under normal circumstances.

The software that is presented to a user like the ScanWizard has the lowest user rights on the Linux system.

The scanner being a web server also allows users to login like a User, Poweruser and Admin.

This is not the same as login into Linux because these users are shielded through the software from any access to Linux.
It can be thought of as the login to an internet store with your personal credentials which does not mean that you are logged into the operating system.

This architecture greatly reduces the risk to open any backdoors into the scanner, as compared to standard workstations.
Almost all exploits need a user interaction with access rights to the operation system, which does not happen in the scanner firmware. Also, a typical Scan2Net scanner will only be visible in the Intranet and all attacks can typically only come from inside the network that the scanner is connected to.