CVE-2024-33699 - OpenCVE

The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation poc

Automatable no

Technical Impact total

Vendors	Products
Level1	Wbr-6012 Wbr-6012 Firmware
Levelone	Wbr-6012

Configuration 1 [-]

AND

cpe:2.3:o:level1:wbr-6012_firmware:r0.40e6:*:*:*:*:*:*:*

cpe:2.3:h:level1:wbr-6012:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1984

History

Fri, 08 Nov 2024 17:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Level1 Level1 wbr-6012 Level1 wbr-6012 Firmware
CPEs		cpe:2.3:h:level1:wbr-6012:-:::::::* cpe:2.3:o:level1:wbr-6012_firmware:r0.40e6:::::::*
Vendors & Products		Level1 Level1 wbr-6012 Level1 wbr-6012 Firmware

Wed, 30 Oct 2024 15:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Levelone Levelone wbr-6012
CPEs		cpe:2.3:a:levelone:wbr-6012::::::::
Vendors & Products		Levelone Levelone wbr-6012
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 30 Oct 2024 13:45:00 +0000

Type	Values Removed	Values Added
Description		The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password.
Weaknesses		CWE-620
References		https://talosintelligence.com/vulnerability_reports/TALOS-2024-1984
Metrics		cvssV3_1 `{'score': 9.9, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: talos

Published: 2024-10-30T13:35:17.397Z

Updated: 2024-10-30T15:03:14.534Z

Reserved: 2024-05-01T17:03:02.176Z

Link: CVE-2024-33699

Vulnrichment

Updated: 2024-10-30T15:03:14.534Z

NVD

Status : Analyzed

Published: 2024-10-30T14:15:07.100

Modified: 2024-11-08T17:09:29.790

Link: CVE-2024-33699

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-33699", "assignerOrgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b", "state": "PUBLISHED", "assignerShortName": "talos", "dateReserved": "2024-05-01T17:03:02.176Z", "datePublished": "2024-10-30T13:35:17.397Z", "dateUpdated": "2024-10-30T15:03:14.534Z"}, "containers": {"cna": {"affected": [{"vendor": "LevelOne", "product": "WBR-6012", "versions": [{"version": "R0.40e6", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-620: Unverified Password Change", "type": "CWE", "cweId": "CWE-620"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.9, "baseSeverity": "CRITICAL"}}], "providerMetadata": {"orgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b", "shortName": "talos", "dateUpdated": "2024-10-30T13:35:17.397Z"}, "references": [{"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1984", "name": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1984"}], "credits": [{"lang": "en", "value": "Discovered by Patrick DeSantis and Francesco Benvenuto of Cisco Talos."}]}, "adp": [{"affected": [{"vendor": "levelone", "product": "wbr-6012", "cpes": ["cpe:2.3:a:levelone:wbr-6012:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "R0.40e6", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-10-30T14:32:18.184189Z", "id": "CVE-2024-33699", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-30T14:33:00.816Z"}}, {"title": "CVE Program Container", "references": [{"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1984"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-10-30T15:03:14.534Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1984"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-10-30T15:03:14.534Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-33699", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-10-30T14:32:18.184189Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:levelone:wbr-6012:*:*:*:*:*:*:*:*"], "vendor": "levelone", "product": "wbr-6012", "versions": [{"status": "affected", "version": "R0.40e6"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-30T14:32:53.919Z"}}], "cna": {"credits": [{"lang": "en", "value": "Discovered by Patrick DeSantis and Francesco Benvenuto of Cisco Talos."}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.9, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "LevelOne", "product": "WBR-6012", "versions": [{"status": "affected", "version": "R0.40e6"}]}], "references": [{"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1984", "name": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1984"}], "descriptions": [{"lang": "en", "value": "The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-620", "description": "CWE-620: Unverified Password Change"}]}], "providerMetadata": {"orgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b", "shortName": "talos", "dateUpdated": "2024-10-30T13:35:17.397Z"}}}, "cveMetadata": {"cveId": "CVE-2024-33699", "state": "PUBLISHED", "dateUpdated": "2024-10-30T15:03:14.534Z", "dateReserved": "2024-05-01T17:03:02.176Z", "assignerOrgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b", "datePublished": "2024-10-30T13:35:17.397Z", "assignerShortName": "talos"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:level1:wbr-6012_firmware:r0.40e6:*:*:*:*:*:*:*", "matchCriteriaId": "FCC94B2E-4651-4E98-90A1-CB53CC2E24CC", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:level1:wbr-6012:-:*:*:*:*:*:*:*", "matchCriteriaId": "1FD255E3-0DBF-440C-AC6A-90B30DB59B34", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password."}, {"lang": "es", "value": "La aplicaci\u00f3n web del enrutador LevelOne WBR-6012 tiene una vulnerabilidad en su versi\u00f3n de firmware R0.40e6, que permite a los atacantes cambiar la contrase\u00f1a de administrador y obtener mayores privilegios sin la contrase\u00f1a actual."}], "id": "CVE-2024-33699", "lastModified": "2024-11-08T17:09:29.790", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.9, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 6.0, "source": "talos-cna@cisco.com", "type": "Secondary"}]}, "published": "2024-10-30T14:15:07.100", "references": [{"source": "talos-cna@cisco.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1984"}], "sourceIdentifier": "talos-cna@cisco.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-620"}], "source": "talos-cna@cisco.com", "type": "Primary"}]}