CVE-2003-0731

CVE Database · CVE-2003-0731

CVE-2003-0731

· N/AModified

CVSS v3.1

N/A

EPSS

1.98%

Published

Oct 20, 2003

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" parameter with a modifyUser value and a modified "priviledges" parameter.

Affected Products (12)

cisco · resource_managervulnerable

cisco · resource_manager_essentialsvulnerable

cisco · ciscoworks_common_management_foundationvulnerable

cisco · ciscoworks_cd1vulnerable

References (4)

http://www.cisco.com/warp/public/707/cisco-sa-20030813-cmf.shtml

PatchVendor Advisory

http://www.securityfocus.com/archive/1/333028

ExploitVendor Advisory

http://www.cisco.com/warp/public/707/cisco-sa-20030813-cmf.shtml

PatchVendor Advisory

http://www.securityfocus.com/archive/1/333028

ExploitVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs