|
761
|
7.5 |
HIGH
Network
-
|
-
|
The LevelOne WBR-6012 router firmware R0.40e6 suffers from an input validation vulnerability within its FTP functionality, enabling attackers to cause a denial of service through a series of malforme…
New
|
CWE-20
Improper Input Validation
|
CVE-2024-33700
|
2024-10-30 23:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
762
|
9.9 |
CRITICAL
Network
|
-
|
-
|
The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the curr…
New
|
CWE-620
Unverified Password Change
|
CVE-2024-33699
|
2024-10-30 23:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
763
|
5.3 |
MEDIUM
Network
-
|
-
|
The LevelOne WBR-6012 router contains a vulnerability within its web application that allows unauthenticated disclosure of sensitive information, such as the WiFi WPS PIN, through a hidden page acces…
New
|
CWE-200
Information Exposure
|
CVE-2024-33626
|
2024-10-30 23:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
764
|
- |
|
-
|
-
|
A denial of service vulnerability exists in the Web Application functionality of LevelOne WBR-6012 R0.40e6. A specially crafted HTTP request can lead to a reboot. An attacker can send an HTTP request…
New
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2024-33623
|
2024-10-30 23:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
765
|
5.3 |
MEDIUM
Network
-
|
-
|
The LevelOne WBR-6012 router has an information disclosure vulnerability in its web application, which allows unauthenticated users to access a verbose system log page and obtain sensitive data, such…
New
|
CWE-200
Information Exposure
|
CVE-2024-33603
|
2024-10-30 23:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
766
|
5.9 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the LevelOne WBR-6012 router's firmware version R0.40e6 allows sensitive information to be transmitted in cleartext via Web and FTP services, exposing it to network sniffing attack…
New
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2024-32946
|
2024-10-30 23:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
767
|
5.3 |
MEDIUM
Network
-
|
-
|
The LevelOne WBR-6012 router with firmware R0.40e6 is vulnerable to improper resource allocation within its web application, where a series of crafted HTTP requests can cause a reboot. This could lea…
New
|
-
|
CVE-2024-31152
|
2024-10-30 23:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
768
|
8.1 |
HIGH
Network
|
-
|
-
|
A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access during the first 30 seconds post-boot. Other vulnerabilities can forc…
New
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2024-31151
|
2024-10-30 23:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
769
|
5.3 |
MEDIUM
Network
-
|
-
|
The WBR-6012 is a wireless SOHO router. It is a low-cost device which functions as an internet gateway for homes and small offices while aiming to be easy to configure and operate. In addition to pro…
New
|
CWE-131
Incorrect Calculation of Buffer Size
|
CVE-2024-28052
|
2024-10-30 23:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
770
|
- |
|
-
|
-
|
A cross-site request forgery (CSRF) vulnerability exists in the Web Application functionality of the LevelOne WBR-6012 R0.40e6. A specially crafted HTTP request can lead to unauthorized access. An at…
New
|
CWE-352
Origin Validation Error
|
CVE-2024-24777
|
2024-10-30 23:15 |
2024-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
