A cross-site request forgery (CSRF) vulnerability exists in the Web Application functionality of the LevelOne WBR-6012 R0.40e6. A specially crafted HTTP request can lead to unauthorized access. An attacker can stage a malicious web page to trigger this vulnerability.
Metrics
Affected Vendors & Products
References
History
Fri, 08 Nov 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Level1
Level1 wbr-6012 Level1 wbr-6012 Firmware |
|
CPEs | cpe:2.3:h:level1:wbr-6012:-:*:*:*:*:*:*:* cpe:2.3:o:level1:wbr-6012_firmware:r0.40e6:*:*:*:*:*:*:* |
|
Vendors & Products |
Level1
Level1 wbr-6012 Level1 wbr-6012 Firmware |
Wed, 30 Oct 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Levelone
Levelone wbr-6012 |
|
CPEs | cpe:2.3:h:levelone:wbr-6012:*:*:*:*:*:*:*:* | |
Vendors & Products |
Levelone
Levelone wbr-6012 |
|
Metrics |
ssvc
|
Wed, 30 Oct 2024 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A cross-site request forgery (CSRF) vulnerability exists in the Web Application functionality of the LevelOne WBR-6012 R0.40e6. A specially crafted HTTP request can lead to unauthorized access. An attacker can stage a malicious web page to trigger this vulnerability. | |
Weaknesses | CWE-352 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: talos
Published: 2024-10-30T13:35:19.175Z
Updated: 2024-10-30T15:03:06.843Z
Reserved: 2024-04-26T19:21:00.183Z
Link: CVE-2024-24777
Vulnrichment
Updated: 2024-10-30T15:03:06.843Z
NVD
Status : Analyzed
Published: 2024-10-30T14:15:04.457
Modified: 2024-11-08T19:00:37.240
Link: CVE-2024-24777
Redhat
No data.