Vulnerabilities > CVE-2024-33626 - Unspecified vulnerability in Level1 Wbr-6012 Firmware R0.40E6

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

level1

NVD

Published: 2024-10-30

Updated: 2024-11-13

Summary

The LevelOne WBR-6012 router contains a vulnerability within its web application that allows unauthenticated disclosure of sensitive information, such as the WiFi WPS PIN, through a hidden page accessible by an HTTP request. Disclosure of this information could enable attackers to connect to the device's WiFi network.

Vulnerable Configurations

Part	Description	Count
OS	Level1 Level1 WBR 6012 Firmware R0.40E6	1
Hardware	Level1 Level1 WBR 6012 -	1

References

https://talosintelligence.com/vulnerability_reports/TALOS-2024-1986