Lucene search
K
CiscoResource Manager

4 matches found

CVE
CVE
added 2001/09/12 4:0 a.m.55 views

CVE-1999-1042

Cisco Resource Manager (CRM) versions 1.0 and 1.1 create world-readable log files and temporary files, exposing sensitive information (user IDs, passwords, SNMP community strings) to local users. The root cause is improper file permissions on diagnostic artifacts, leading to partial confidentiali...

1.2CVSS6.7AI score0.00336EPSS
CVE
CVE
added 2003/09/04 4:0 a.m.46 views

CVE-2003-0732

CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows a guest user to change the guest account to Admin on the Modify or delete users pages, potentially obtaining restricted information and administrative privileges. Affected component: CMF authentication/authorization on user-mana...

10CVSS7AI score0.01976EPSS
CVE
CVE
added 2003/09/04 4:0 a.m.44 views

CVE-2003-0731

CMF 2.1 and earlier of CiscoWorks Common Management Foundation is affected: a guest user could obtain administrative privileges via a specific POST to com.cisco.nm.cmf.servlet.CsAuthServlet, potentially using the cmd parameter with a modifyUser value and a altered priviledges parameter. This is d...

10CVSS7.2AI score0.01976EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.40 views

CVE-1999-1126

Cisco Resource Manager (CRM) 1.1 and earlier stores sensitive configuration data in files with insecure permissions, enabling local users to read usernames, passwords, and SNMP community strings from (1) swim_swd.log, (2) swim_debug.log, (3) dbi_debug.log, and (4) temporary files beginning with D...

2.1CVSS6.2AI score0.00358EPSS