CVE-2001-1135

3 documents3 sources

Severity

7.5HIGH

EPSS

0.7%

top 27.01%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Zyxel Prestige

Timeline

PublishedAug 14

Latest updateApr 30

Description

ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the router, if the password is known.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDzyxel/prestige642r

🔴Vulnerability Details

GHSA

GHSA-96qj-8842-2r33: ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing some↗2022-04-30

▶

CVEList

CVE-2001-1135: ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing some↗2002-03-15

▶