Unrated severityNVD Advisory· Published Apr 10, 2001· Updated Apr 16, 2026

CVE-2001-1425

Description

The challenge-response authentication of the EXPERT user for Alcatel Speed Touch running firmware KHDSAA.108 and KHDSAA.132 through KHDSAA.134 allows remote attackers to gain privileges by directly computing the response based on information that is provided by the device during login.

Affected products

Alcatel/Speed Touch Home4 versions
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.108:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:h:alcatel:speed_touch_home:khdsaa.108:*:*:*:*:*:*:*
- cpe:2.3:h:alcatel:speed_touch_home:khdsaa.132:*:*:*:*:*:*:*
- cpe:2.3:h:alcatel:speed_touch_home:khdsaa.133:*:*:*:*:*:*:*
- cpe:2.3:h:alcatel:speed_touch_home:khdsaa.134:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/2568nvdVendor Advisory
www.cert.org/advisories/CA-2001-08.htmlnvdUS Government Resource
www.kb.cert.org/vuls/id/243592nvdUS Government Resource
security.sdsc.edu/self-help/alcatel/alcatel-bugs.htmlnvd
www.securityfocus.com/archive/1/175229nvd
exchange.xforce.ibmcloud.com/vulnerabilities/6354nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000