5
CVE-2001-0870
- EPSS 1.1%
- Published 21.12.2001 05:00:00
- Last modified 03.04.2025 01:03:51
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
HTTP server in Alchemy Eye and Alchemy Network Monitor 1.9x through 2.6.18 is enabled without authentication by default, which allows remote attackers to obtain network monitoring logs with potentially sensitive information by directly requesting the eye.ini file.
Data is provided by the National Vulnerability Database (NVD)
Alchemy Lab ≫ Alchemy Eye Version1.9
Alchemy Lab ≫ Alchemy Eye Version2.0
Alchemy Lab ≫ Alchemy Eye Version2.1
Alchemy Lab ≫ Alchemy Eye Version2.2
Alchemy Lab ≫ Alchemy Eye Version2.3
Alchemy Lab ≫ Alchemy Eye Version2.4
Alchemy Lab ≫ Alchemy Eye Version2.5
Alchemy Lab ≫ Alchemy Eye Version2.6
Alchemy Lab ≫ Alchemy Eye Version2.6.18
Dek Software ≫ Alchemy Network Monitor Version <= 2.6.18
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.1% | 0.76 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|