CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-0731

CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" parameter with a modifyUser value and a modified "priviledges" parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.6%

CVSS Severity

CVSS v2 Score 10.0

References

Products affected by CVE-2003-0731

Cisco » Ciscoworks Common Management Foundation » Version: 2.0

cpe:2.3:a:cisco:ciscoworks_common_management_foundation:2.0
Cisco » Ciscoworks Common Management Foundation » Version: 2.1

cpe:2.3:a:cisco:ciscoworks_common_management_foundation:2.1
Cisco » Resource Manager » Version: 1.0

cpe:2.3:a:cisco:resource_manager:1.0
Cisco » Resource Manager » Version: 1.1

cpe:2.3:a:cisco:resource_manager:1.1
Cisco » Resource Manager Essentials » Version: 2.0

cpe:2.3:a:cisco:resource_manager_essentials:2.0
Cisco » Resource Manager Essentials » Version: 2.1

cpe:2.3:a:cisco:resource_manager_essentials:2.1
Cisco » Resource Manager Essentials » Version: 2.2

cpe:2.3:a:cisco:resource_manager_essentials:2.2
Cisco » Ciscoworks Cd1 » Version: 1st

cpe:2.3:o:cisco:ciscoworks_cd1:1st
Cisco » Ciscoworks Cd1 » Version: 2nd

cpe:2.3:o:cisco:ciscoworks_cd1:2nd
Cisco » Ciscoworks Cd1 » Version: 3rd

cpe:2.3:o:cisco:ciscoworks_cd1:3rd
Cisco » Ciscoworks Cd1 » Version: 4th

cpe:2.3:o:cisco:ciscoworks_cd1:4th
Cisco » Ciscoworks Cd1 » Version: 5th

cpe:2.3:o:cisco:ciscoworks_cd1:5th

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-0731

Products

Pricing

Contact Us