Submeter #852320: TOTOLink CS185R_T10 CS185R_T10 V5.9c.1485 Misconfiguration in CS185R_T10informação

TítuloTOTOLink CS185R_T10 CS185R_T10 V5.9c.1485 Misconfiguration in CS185R_T10
Descrição**Description:** In `CS185R_T10 V5.9c.1485`, there is a insecure configuration vulnerability. The device sets both `User` and `Group` property in the `boa` webserver configuration file to `root` permissions. This violates the principle of least privilege. Any exploit in the web interface can immediately grant root access, leading to total device compromise. **Detail:** In the `CS185R_T10 V5.9c.1485` firmware, the partial content of `/etc/boa/boa.conf` is as follows. ``` # User: The name or UID the server should run as. # Group: The group name or GID the server should run as. #User nobody #Group nogroup User root Group root ``` Within, both `User` and `Group` properties are set to the `root` permissions. This violates the principle of least privilege. The official documentation of boa (http://www.boa.org/documentation/boa-2.html) states the following requirements. ``` 2.4 Security Boa has been designed to use the existing file system security. In boa.conf, the directives user and group determine who Boa will run as, if launched by root. By default, the user/group is nobody/nogroup. This allows quite a bit of flexibility. For example, if you want to disallow access to otherwise accessible directories or files, simply make them inaccessible to nobody/nogroup. If the user that Boa runs as is "boa" and the groups that "boa" belongs to include "web-stuff" then files/directories accessible by users with group "web-stuff" will also be accessible to Boa. ``` Clearly, there is a misconfiguration vulnerability here. There is a significant security risk here. It is not set according to the officially recommended security configuration `nobody/nogroup`. This violates the principle of least privilege. Any exploit in the web interface can immediately grant root access, leading to total device compromise.
Fonte⚠️ https://app.notion.com/p/CS185R_T10-V5-9c-1485-37a1f5ba98908058a15dd1094f548f9d?source=copy_link
Utilizador
 L-14 (UID 98432)
Submissão09/06/2026 05h40 (há 1 mês)
Moderação09/07/2026 16h54 (1 month later)
EstadoDuplicado
Entrada VulDB377214 [TOTOLINK EX200 até 20260906 Web Interface /etc/boa/boa.conf Elevação de Privilégios]
Pontos0

Do you need the next level of professionalism?

Upgrade your account now!