cbcvebase.
CVE-2024-33603
published 2024-10-30

CVE-2024-33603: The LevelOne WBR-6012 router has an information disclosure vulnerability in its web application, which allows unauthenticated users to access a verbose system…

PriorityP335medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EPSS
8.79%
94.5th percentile
The LevelOne WBR-6012 router has an information disclosure vulnerability in its web application, which allows unauthenticated users to access a verbose system log page and obtain sensitive data, such as memory addresses and IP addresses for login attempts. This flaw could lead to session hijacking due to the device's reliance on IP address for authentication.

Affected

2 ranges
VendorProductVersion rangeFixed in
level1wbr-6012_firmware
levelonewbr-6012
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.