CVE-2001-1374 [High] | Security Vulnerability in Expect

CVE-2001-1374 is rated Low Risk (33.6/100): CVSS High severity, with low exploitation likelihood (EPSS 0.05%). Monitor for updates and reassess as exploit intelligence or EPSS changes.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-03-30	0.05%	0.05%	+0.01%
2	2025-03-29	0.05%	0.05%	-0.01%
3	2025-03-17	—	0.05%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-03-30

0.05%

+0.01%

2025-03-29

0.05%

-0.01%

2025-03-17

—

0.05%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
7.2	2.0	HIGH	`AV:L/AC:L/Au:N/C:C/I:C/A:C` Click to expand Access vector (AV:L) Requires local access to the target system. Access complexity (AC:L) Exploitation conditions are straightforward and predictable. Authentication (AU:N) No authentication is required. Confidentiality impact (C:C) Complete confidentiality impact. Integrity impact (I:C) Complete integrity impact. Availability impact (A:C) Complete availability impact.	3.9	10.0	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

7.2

2.0

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C Click to expand

Access vector (AV:L): Requires local access to the target system.
Access complexity (AC:L): Exploitation conditions are straightforward and predictable.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:C): Complete confidentiality impact.
Integrity impact (I:C): Complete integrity impact.
Availability impact (A:C): Complete availability impact.

3.9

10.0

[email protected]

OS Trackers for CVE-2001-1374

vendor	priority	summary	link
`redhat`	—	—	https://access.redhat.com/security/cve/CVE-2001-1374

vendor

priority

summary

link

redhat

—

https://access.redhat.com/security/cve/CVE-2001-1374

Affected software / configurations for CVE-2001-1374

Vendor	Product	Version	Raw CPE
don_libes	expect	0	cpe:2.3:a:don_libes:expect:0:::::::*
don_libes	expect	1	cpe:2.3:a:don_libes:expect:1:::::::*
don_libes	expect	2	cpe:2.3:a:don_libes:expect:2:::::::*
don_libes	expect	3	cpe:2.3:a:don_libes:expect:3:::::::*
don_libes	expect	4	cpe:2.3:a:don_libes:expect:4:::::::*
don_libes	expect	5.0	cpe:2.3:a:don_libes:expect:5.0:::::::*
don_libes	expect	5.1	cpe:2.3:a:don_libes:expect:5.1:::::::*
don_libes	expect	5.2	cpe:2.3:a:don_libes:expect:5.2:::::::*
don_libes	expect	5.3	cpe:2.3:a:don_libes:expect:5.3:::::::*
don_libes	expect	5.4	cpe:2.3:a:don_libes:expect:5.4:::::::*
don_libes	expect	5.5	cpe:2.3:a:don_libes:expect:5.5:::::::*
don_libes	expect	5.6	cpe:2.3:a:don_libes:expect:5.6:::::::*
don_libes	expect	5.7	cpe:2.3:a:don_libes:expect:5.7:::::::*
don_libes	expect	5.8	cpe:2.3:a:don_libes:expect:5.8:::::::*
don_libes	expect	5.9	cpe:2.3:a:don_libes:expect:5.9:::::::*
don_libes	expect	5.10	cpe:2.3:a:don_libes:expect:5.10:::::::*
don_libes	expect	5.11	cpe:2.3:a:don_libes:expect:5.11:::::::*
don_libes	expect	5.12	cpe:2.3:a:don_libes:expect:5.12:::::::*
don_libes	expect	5.13	cpe:2.3:a:don_libes:expect:5.13:::::::*
don_libes	expect	5.14	cpe:2.3:a:don_libes:expect:5.14:::::::*
don_libes	expect	5.15	cpe:2.3:a:don_libes:expect:5.15:::::::*
don_libes	expect	5.16	cpe:2.3:a:don_libes:expect:5.16:::::::*
don_libes	expect	5.17	cpe:2.3:a:don_libes:expect:5.17:::::::*
don_libes	expect	5.18	cpe:2.3:a:don_libes:expect:5.18:::::::*
don_libes	expect	5.19	cpe:2.3:a:don_libes:expect:5.19:::::::*
don_libes	expect	5.20	cpe:2.3:a:don_libes:expect:5.20:::::::*
don_libes	expect	5.21	cpe:2.3:a:don_libes:expect:5.21:::::::*
don_libes	expect	5.22	cpe:2.3:a:don_libes:expect:5.22:::::::*
don_libes	expect	5.23	cpe:2.3:a:don_libes:expect:5.23:::::::*
don_libes	expect	5.24	cpe:2.3:a:don_libes:expect:5.24:::::::*
don_libes	expect	5.25	cpe:2.3:a:don_libes:expect:5.25:::::::*
don_libes	expect	5.26	cpe:2.3:a:don_libes:expect:5.26:::::::*
don_libes	expect	5.27	cpe:2.3:a:don_libes:expect:5.27:::::::*
don_libes	expect	5.28	cpe:2.3:a:don_libes:expect:5.28:::::::*
don_libes	expect	5.29	cpe:2.3:a:don_libes:expect:5.29:::::::*
don_libes	expect	5.30	cpe:2.3:a:don_libes:expect:5.30:::::::*
don_libes	expect	5.31	cpe:2.3:a:don_libes:expect:5.31:::::::*
conectiva	linux	6.0	cpe:2.3:o:conectiva:linux:6.0:::::::*
conectiva	linux	7.0	cpe:2.3:o:conectiva:linux:7.0:::::::*
redhat	linux	7.0	cpe:2.3:o:redhat:linux:7.0:::::::*

References for CVE-2001-1374

URL	Tags
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000409
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:060
http://www.redhat.com/support/errata/RHSA-2002-148.html
http://www.securityfocus.com/bid/3074	Patch Vendor Advisory
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=22187
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=28224
https://exchange.xforce.ibmcloud.com/vulnerabilities/6870

URL

CVE-2001-1374

Exploit prediction scoring system (EPSS) score for CVE-2001-1374

Common vulnerability scoring system (CVSS) metrics for CVE-2001-1374

Weakness enumeration for CVE-2001-1374

OS Trackers for CVE-2001-1374

Affected software / configurations for CVE-2001-1374

References for CVE-2001-1374