CVE-2020-25206
7.2
Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.2 / Impact: 5.9
Source: NVD
Description
The web console for Mimosa B5, B5c, and C5x firmware through 2.8.0.2 allows authenticated command injection in the Throughput, WANStats, PhyStats, and QosStats API classes. An attacker with access to a web console account may execute operating system commands on affected devices by sending crafted POST requests to the affected endpoints (/core/api/calls/Throughput.php, /core/api/calls/WANStats.php, /core/api/calls/PhyStats.php, /core/api/calls/QosStats.php). This results in the complete takeover of the vulnerable device. This vulnerability does not occur in the older 1.5.x firmware versions.
Affected (3)
Products: Mimosa: B5 Firmware, B5c Firmware, C5c Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.5.2 to 2.8.0.3 |
| Running on/with | Platform Versions |
|---|---|
Mimosa B5 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.5.2 to 2.8.1.0 |
| Running on/with | Platform Versions |
|---|---|
Mimosa B5c | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| From 1.5.2 to 2.8.1.0 |
| Running on/with | Platform Versions |
|---|---|
Mimosa C5c | All versions |
References (6)
Source: cve@mitre.org
ExploitThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory
Timeline
No history available yet.