cbcvebase.
CVE-2024-24777
published 2024-10-30

CVE-2024-24777: A cross-site request forgery (CSRF) vulnerability exists in the Web Application functionality of the LevelOne WBR-6012 R0.40e6. A specially crafted HTTP…

PriorityP352high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
7.03%
93.4th percentile
A cross-site request forgery (CSRF) vulnerability exists in the Web Application functionality of the LevelOne WBR-6012 R0.40e6. A specially crafted HTTP request can lead to unauthorized access. An attacker can stage a malicious web page to trigger this vulnerability.

Affected

2 ranges
VendorProductVersion rangeFixed in
level1wbr-6012_firmware
levelonewbr-6012
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.