The LevelOne WBR-6012 router contains a vulnerability within its web application that allows unauthenticated disclosure of sensitive information, such as the WiFi WPS PIN, through a hidden page accessible by an HTTP request. Disclosure of this information could enable attackers to connect to the device's WiFi network.
Advisories
Source ID Title
EUVD EUVD EUVD-2024-34483 The LevelOne WBR-6012 router contains a vulnerability within its web application that allows unauthenticated disclosure of sensitive information, such as the WiFi WPS PIN, through a hidden page accessible by an HTTP request. Disclosure of this information could enable attackers to connect to the device's WiFi network.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 16 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.0007}

epss

{'score': 0.001}


Fri, 22 Nov 2024 12:00:00 +0000


Wed, 13 Nov 2024 19:00:00 +0000

Type Values Removed Values Added
First Time appeared Level1
Level1 wbr-6012
Level1 wbr-6012 Firmware
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:h:level1:wbr-6012:-:*:*:*:*:*:*:*
cpe:2.3:o:level1:wbr-6012_firmware:r0.40e6:*:*:*:*:*:*:*
Vendors & Products Level1
Level1 wbr-6012
Level1 wbr-6012 Firmware

Wed, 30 Oct 2024 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Levelone
Levelone wbr-6012
CPEs cpe:2.3:a:levelone:wbr-6012:*:*:*:*:*:*:*:*
Vendors & Products Levelone
Levelone wbr-6012
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 30 Oct 2024 13:45:00 +0000

Type Values Removed Values Added
Description The LevelOne WBR-6012 router contains a vulnerability within its web application that allows unauthenticated disclosure of sensitive information, such as the WiFi WPS PIN, through a hidden page accessible by an HTTP request. Disclosure of this information could enable attackers to connect to the device's WiFi network.
Weaknesses CWE-200
References
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: talos

Published:

Updated: 2024-10-30T15:03:13.438Z

Reserved: 2024-05-01T21:33:15.156Z

Link: CVE-2024-33626

cve-icon Vulnrichment

Updated: 2024-10-30T15:03:13.438Z

cve-icon NVD

Status : Modified

Published: 2024-10-30T14:15:06.850

Modified: 2024-11-21T09:17:16.340

Link: CVE-2024-33626

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.