CVE-2001-1135
UnknownEPSS 1.50%
Last modified
CVE-2001-1135 is a vulnerability of currently unknown severity. ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the router, if the password is known.. EPSS estimates a 1.50% chance of exploitation in the next 30 days.
Description
ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the router, if the password is known.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Zyxel | Prestige | 642r |
References
- http://www.securityfocus.com/archive/1/204439Vendor Advisory
- http://www.securityfocus.com/archive/1/214971Vendor Advisory
- http://www.securityfocus.com/bid/3346Vendor Advisory
- http://www.securityfocus.com/archive/1/204439Vendor Advisory
- http://www.securityfocus.com/archive/1/214971Vendor Advisory
- http://www.securityfocus.com/bid/3346Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2001-1135?
ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the router, if the password is known.
How severe is CVE-2001-1135?
Severity scoring for CVE-2001-1135 is pending analysis. The EPSS model estimates a 1.50% probability of exploitation in the next 30 days.
How do I fix CVE-2001-1135?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2001-1135?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST