Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
CVE-2001-1425
CVE information
Published
Last Modified
CVSSv2.0 Severity
Impact Analysis
Description
The challenge-response authentication of the EXPERT user for Alcatel Speed Touch running firmware KHDSAA.108 and KHDSAA.132 through KHDSAA.134 allows remote attackers to gain privileges by directly computing the response based on information that is provided by the device during login..
CVSSv2.0 Score
- Severity
- High
- Base Score
- 7.5/10
- Exploit Score
- 10/10
- Access Vector
- Network
- Access Complexity
- Low
- Authentication Required
- None
- Impact Score
- 6.4/10
- Confidentiality Impact
- Partial
- Availability Impact
- Partial
- Integrity Impact
- Partial
Products Affected
CPE | Affected | Vulnerable | Excluding | Edit |
---|---|---|---|---|
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.133:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.134:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.132:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.108:*:*:*:*:*:*:* |
Yes
|
- | - |