CyberSec.Space Logo
Back to CVE Browser

CVE-2003-0731

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0970%
EPSS Percentile20.79th
PublishedOct 20, 2003
Last ModifiedApr 16, 2026

Vulnerability Description

CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" parameter with a modifyUser value and a modified "priviledges" parameter.

Affected Platforms (CPE)

πŸ“¦
Cisco

Resource Manager

= 1.0
πŸ“¦
Cisco

Resource Manager

= 1.1
πŸ“¦
Cisco

Resource Manager Essentials

= 2.0
πŸ“¦
Cisco

Resource Manager Essentials

= 2.1
πŸ“¦
Cisco

Resource Manager Essentials

= 2.2
πŸ“¦
Cisco

Ciscoworks Common Management Foundation

= 2.0
πŸ“¦
Cisco

Ciscoworks Common Management Foundation

= 2.1
πŸ’»
Cisco

Ciscoworks Cd1

= 1st
πŸ’»
Cisco

Ciscoworks Cd1

= 2nd
πŸ’»
Cisco

Ciscoworks Cd1

= 3rd
πŸ’»
Cisco

Ciscoworks Cd1

= 4th
πŸ’»
Cisco

Ciscoworks Cd1

= 5th

References & Advisories

πŸ”— http://www.cisco.com/warp/public/707/cisco-sa-20030813-cmf.shtml
πŸ”— http://www.securityfocus.com/archive/1/333028
πŸ”— http://www.cisco.com/warp/public/707/cisco-sa-20030813-cmf.shtml
πŸ”— http://www.securityfocus.com/archive/1/333028

Related Vulnerabilities

CVE-2006-027710.0

Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.10 have unspecified impact and attack vector...

CVE-2008-021510.0

Multiple unspecified vulnerabilities in HP Storage Essentials Storage Resource Management (SRM) before 6.0.0 allow remote attacker...

CVE-2020-202110.0

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option i...

CVE-2009-230010.0

The management interface in the phion airlock Web Application Firewall (WAF) 4.1-10.41 does not properly handle CGI requests that ...