This page lists publicly disclosed CVE vulnerabilities affecting com2001 alexis_server (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2001-1254 | Web Access component for COM2001 Alexis 2.0 and 2.1 in InternetPBX sends username and voice mail passwords in the clear via a Java applet that sends the information to port 8888 of the server, which could allow remote attackers to steal the passwords via sniffing. | [email protected] | 7.5 | 0.56% | 2001-09-27 | 2026-04-16 |
| CVE-2001-1253 | Alexis 2.0 and 2.1 in COM2001 InternetPBX stores voicemail passwords in plain text in the com2001.ini file, which could allow local users to make long distance calls as other users. | [email protected] | 4.6 | 0.05% | 2001-09-27 | 2026-04-16 |