Access Control Flaw in LB-LINK Router by LB-Link
CVE-2024-33374

9.8CRITICAL

Key Information:

Vendor: LB-Link
Status: BL-W1210M v2.0 Router
Vendor: CVE Published:; 14 June 2024

What is CVE-2024-33374?

The LB-LINK BL-W1210M v2.0 router is affected by an improper access control vulnerability in its UART/Serial interface. This flaw enables potential attackers to gain unauthorized access to the root terminal without requiring authentication. By exploiting this vulnerability, an intruder could manipulate the router's settings or access sensitive data, potentially leading to further security breaches. Users of this router model should take immediate actions to secure their devices.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://redfoxsec.com/blog/security-advisory-multiple-vul...

https://github.com/ShravanSinghRathore/Security-Advisory-...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 14, 2024
Vulnerability Reserved
Apr 23, 2024

JSON

LB-Link

What is CVE-2024-33374?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.