CVE-2020-25205
moderate-risk
Published 2021-07-20
The web console for Mimosa B5, B5c, and C5x firmware through 2.8.0.2 is vulnerable to stored XSS in the set_banner() function of /var/www/core/controller/index.php. An unauthenticated attacker may set the contents of the /mnt/jffs2/banner.txt file, stored on the device's filesystem, to contain arbitrary JavaScript. The file contents are then used as part of a welcome/banner message presented to unauthenticated users who visit the login page for the web console. This vulnerability does not occur in the older 1.5.x firmware versions.
Do I need to act?
~
1.0% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.1/10
Medium
NETWORK
/ LOW complexity
Affected Products (3)
Affected Vendors
References (4)
Third Party Advisory
https://labs.f-secure.com/advisories/
Third Party Advisory
https://labs.f-secure.com/advisories/
35
/ 100
moderate-risk
Severity
23/34 · High
Exploitability
3/34 · Minimal
Exposure
9/34 · Low