Firmware Vulnerability Affects LevelOne WBR-6012 Router, Leading to Denial of Service and Device Reboots
CVE-2024-33700

7.5HIGH

Key Information:

Vendor: Levelone
Status: Wbr-6012
Vendor: CVE Published:; 30 October 2024

What is CVE-2024-33700?

The LevelOne WBR-6012 router firmware version R0.40e6 is susceptible to an input validation vulnerability specifically within its FTP functionality. This flaw allows attackers to exploit malformed FTP commands to create conditions that lead to a denial of service. As a result, this can cause unexpected device reboots and interruptions in service, affecting overall network performance and reliability. Administrators utilizing vulnerable versions are urged to implement immediate measures to mitigate potential risks.

Affected Version(s)

WBR-6012 R0.40e6

References

https://talosintelligence.com/vulnerability_reports/TALOS...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 30, 2024
Vulnerability Reserved
May 6, 2024

Credit

Discovered by Patrick DeSantis of Cisco Talos.

Levelone

What is CVE-2024-33700?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit