BoardLight
BoardLight
BoardLight 603
BoardLight
RETIRED MACHINE

BoardLight

BoardLight - Linux Linux
BoardLight - Easy Easy

4.5

MACHINE RATING

15788

USER OWNS

14892

SYSTEM OWNS

25/05/2024

RELEASED
Created by cY83rR0H1t

Machine Synopsis

BoardLight is an easy difficulty Linux machine that features a `Dolibarr` instance vulnerable to [CVE-2023-30253](https://nvd.nist.gov/vuln/detail/CVE-2023-30253). This vulnerability is leveraged to gain access as `www-data`. After enumerating and dumping the web configuration file contents, plaintext credentials lead to `SSH` access to the machine. Enumerating the system, a `SUID` binary related to `enlightenment` is identified which is vulnerable to privilege escalation via [CVE-2022-37706]( https://nvd.nist.gov/vuln/detail/CVE-2022-37706) and can be abused to leverage a root shell.

Machine Matrix

Ready to start your
hacking journey?