CVE-2024-33699

High

The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the…

talos·CWE-620·Published 2024-10-30

CVSS

8.8

EPSS

0.09

KEV

Exploits

cve.orgen

212 chars

The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password.

NVDen

212 chars

NVDes

232 chars

La aplicación web del enrutador LevelOne WBR-6012 tiene una vulnerabilidad en su versión de firmware R0.40e6, que permite a los atacantes cambiar la contraseña de administrador y obtener mayores privilegios sin la contraseña actual.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	9.9	—	—	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
3.1	Primary	cve.org	9.9	—	—	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
3.1	Primary	NVD	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3.1	Secondary	NVD	9.9	3.1	6.0	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H