The web server in a consumer router exists mostly for the purpose of providing an admin interface --- in fact, most attacks on customer prem devices target that web server. Many of the admin functions on the router are game-over for security.
It's a good example of something that seems like it should be straightforward to sandbox, but isn't.
It's a good example of something that seems like it should be straightforward to sandbox, but isn't.