Overview
A critical vulnerability, CVE-2025-6763, has been discovered in the web-based management interface of various Comet System models. This vulnerability allows malicious entities to manipulate the /setupA.cfg file, leading to missing authentication. This vulnerability poses a significant threat to system security and data integrity, enabling potential system compromise or data leakage.
Vulnerability Summary
CVE ID: CVE-2025-6763
Severity: Critical (7.5 CVSS Score)
Attack Vector: Local Network
Privileges Required: None
User Interaction: None
Impact: Potential system compromise or data leakage
Affected Products
Escape the Surveillance Era
Most apps won’t tell you the truth.
They’re part of the problem.
Phone numbers. Emails. Profiles. Logs.
It’s all fuel for surveillance.
Ameeba Chat gives you a way out.
- • No phone number
- • No email
- • No personal info
- • Anonymous aliases
- • End-to-end encrypted
Chat without a trace.
Product | Affected Versions
Comet System T0510 | 1.60
Comet System T3510 | 1.60
Comet System T3511 | 1.60
Comet System T4511 | 1.60
Comet System T6640 | 1.60
Comet System T7511 | 1.60
Comet System T7611 | 1.60
Comet System P8510 | 1.60
Comet System P8552 | 1.60
Comet System H3531 | 1.60
How the Exploit Works
The vulnerability lies within the /setupA.cfg file of the web-based management interface. Attackers who have access to the local network can manipulate this file, leading to a missing authentication. This situation can allow the attacker to execute unauthorized activities, potentially leading to system compromise or data leakage.
Conceptual Example Code
The following conceptual example illustrates how the vulnerability might be exploited using a malicious shell command:
$ curl -X POST -d "@payload.json" http://target_comet_system/setupA.cfgHere, “payload.json” is a crafted JSON file that contains the malicious payload which manipulates /setupA.cfg for bypassing authentication.
