7.5

CVE-2001-0871

EPSS 3.86%
Veröffentlicht 21.12.2001 05:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Directory traversal vulnerability in HTTP server for Alchemy Eye and Alchemy Network Monitor allows remote attackers to execute arbitrary commands via an HTTP request containing (1) a .. in versions 2.0 through 2.6.18, or (2) a DOS device name followed by a .. in versions 2.6.19 through 3.0.10.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Alchemy Lab ≫ Alchemy Eye Version2.0

Alchemy Lab ≫ Alchemy Eye Version2.1

Alchemy Lab ≫ Alchemy Eye Version2.2

Alchemy Lab ≫ Alchemy Eye Version2.3

Alchemy Lab ≫ Alchemy Eye Version2.4

Alchemy Lab ≫ Alchemy Eye Version2.5

Alchemy Lab ≫ Alchemy Eye Version2.6

Alchemy Lab ≫ Alchemy Eye Version2.6.18

Alchemy Lab ≫ Alchemy Eye Version2.6.19

Alchemy Lab ≫ Alchemy Eye Version3.0

Alchemy Lab ≫ Alchemy Eye Version3.0.10

Dek Software ≫ Alchemy Network Monitor Version <= 3.0.10

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	3.86%	0.878

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://marc.info/?l=bugtraq&m=100714173510535&w=2

http://www.kb.cert.org/vuls/id/220715

US Government Resource

http://www.securityfocus.com/bid/3599

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/7625

https://exchange.xforce.ibmcloud.com/vulnerabilities/7626

https://nvd.nist.gov/vuln/detail/CVE-2001-0871

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-0871

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-0871

EUVD