CVE-2003-1173
CVE-2003-1173 is a medium-severity vulnerability with a CVSS 2.0 base score of 5.0. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: Medium (CVSS 2.0 base score 5.0)
- EPSS exploit prediction: 3% (87th percentile)
- Actively exploited: Not listed in CISA KEV
- Published:
- Last modified:
Description
Centrinity FirstClass 7.1 allows remote attackers to access sensitive information by appending search to the end of the URL and checking all of the search option checkboxes and leaving the text field blank, which will return all files in the searched directory.
Frequently asked questions
- What is CVE-2003-1173?
- Centrinity FirstClass 7.1 allows remote attackers to access sensitive information by appending search to the end of the URL and checking all of the search option checkboxes and leaving the text field blank, which will return all files in the searched directory.
- How severe is CVE-2003-1173?
- CVE-2003-1173 has a CVSS 2.0 base score of 5.0, rated medium severity.
- Is CVE-2003-1173 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 3% (87th percentile), an estimate of the probability of exploitation in the next 30 days.
- How do I fix CVE-2003-1173?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2003-1173 published?
- CVE-2003-1173 was published on 2003-12-31 and last updated on 2026-06-16.