Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" parameter with a modifyUser value and a modified "priviledges" parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CiscoWorks Common Management Foundation (CMF)漏洞
Vulnerability Description
CiscoWorks Common Management Foundation (CMF) 2.1及其早期版本存在漏洞。客户借助com.cisco.nm.cmf.servlet.CsAuthServlet的某些POST请求获得管理员特权,可能涉及到modifyUser值的“cmd”参数和修改的“priviledges”参数。
CVSS Information
N/A
Vulnerability Type
N/A