CVE-2020-25205

Name of the Vulnerable Software and Affected Versions: Mimosa B5, B5c, and C5x firmware versions through 2.8.0.2

Description: The issue concerns a stored XSS vulnerability in the set banner() function of /var/www/core/controller/index.php, allowing an unauthenticated attacker to set the contents of the /mnt/jffs2/banner.txt file to contain arbitrary JavaScript. This file's contents are used as part of a welcome/banner message presented to unauthenticated users visiting the login page for the web console.

Recommendations: For Mimosa B5, B5c, and C5x firmware versions through 2.8.0.2, consider disabling the set banner() function until a patch is available to prevent exploitation of the stored XSS vulnerability. Restrict access to the /mnt/jffs2/banner.txt file to minimize the risk of arbitrary JavaScript execution. Avoid using the /var/www/core/controller/index.php endpoint with unauthenticated access until the issue is resolved.