The web console for Mimosa B5, B5c, and C5x firmware through 2.8.0.2 is vulnerable to stored XSS in the set_banner() function of /var/www/core/controller/index.php. An unauthenticated attacker may set the contents of the /mnt/jffs2/banner.txt file, stored on the device's filesystem, to contain arbitrary JavaScript. The file contents are then used as part of a welcome/banner message presented to unauthenticated users who visit the login page for the web console. This vulnerability does not occur in the older 1.5.x firmware versions.
                
            References
                    | Link | Resource | 
|---|---|
| https://labs.f-secure.com/advisories/ | Third Party Advisory | 
| https://labs.f-secure.com/advisories/mimosa-ptp-devices-multiple-vulnerabilities/ | Exploit Third Party Advisory | 
| https://labs.f-secure.com/advisories/ | Third Party Advisory | 
| https://labs.f-secure.com/advisories/mimosa-ptp-devices-multiple-vulnerabilities/ | Exploit Third Party Advisory | 
Configurations
                    Configuration 1 (hide)
| AND | 
 
 | 
Configuration 2 (hide)
| AND | 
 
 | 
Configuration 3 (hide)
| AND | 
 
 | 
History
                    No history.
Information
                Published : 2021-07-20 19:15
Updated : 2024-11-21 05:17
NVD link : CVE-2020-25205
Mitre link : CVE-2020-25205
CVE.ORG link : CVE-2020-25205
JSON object : View
Products Affected
                mimosa
- b5
- b5c
- b5c_firmware
- c5c
- c5c_firmware
- b5_firmware
CWE
                
                    
                        
                        CWE-79
                        
            Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
