The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password.
Advisories
Source ID Title
EUVD EUVD EUVD-2024-34484 The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Wed, 16 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00153}

epss

{'score': 0.00184}


Fri, 22 Nov 2024 12:00:00 +0000


Fri, 08 Nov 2024 17:30:00 +0000

Type Values Removed Values Added
First Time appeared Level1
Level1 wbr-6012
Level1 wbr-6012 Firmware
CPEs cpe:2.3:h:level1:wbr-6012:-:*:*:*:*:*:*:*
cpe:2.3:o:level1:wbr-6012_firmware:r0.40e6:*:*:*:*:*:*:*
Vendors & Products Level1
Level1 wbr-6012
Level1 wbr-6012 Firmware

Wed, 30 Oct 2024 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Levelone
Levelone wbr-6012
CPEs cpe:2.3:a:levelone:wbr-6012:*:*:*:*:*:*:*:*
Vendors & Products Levelone
Levelone wbr-6012
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 30 Oct 2024 13:45:00 +0000

Type Values Removed Values Added
Description The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password.
Weaknesses CWE-620
References
Metrics cvssV3_1

{'score': 9.9, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: talos

Published:

Updated: 2024-10-30T15:03:14.534Z

Reserved: 2024-05-01T17:03:02.176Z

Link: CVE-2024-33699

cve-icon Vulnrichment

Updated: 2024-10-30T15:03:14.534Z

cve-icon NVD

Status : Modified

Published: 2024-10-30T14:15:07.100

Modified: 2024-11-21T09:17:25.897

Link: CVE-2024-33699

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.