The LevelOne WBR-6012 router with firmware R0.40e6 has an authentication bypass vulnerability in its web application due to reliance on client IP addresses for authentication. Attackers could spoof an IP address to gain unauthorized access without needing a session token.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:HLevel1 Wbr 6012
HWLevel1wszystkie wersjeLevel1 Wbr 6012 Firmware
OSLevel1r0.40e6
Related vulnerabilities
LevelOne WBR-6012: zmiana hasła admina bez uwierzytelnienia
A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain ...
A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain ...
A cross-site request forgery (CSRF) vulnerability exists in the Web Application functionality of the LevelOne ...
The LevelOne WBR-6012 router firmware R0.40e6 suffers from an input validation vulnerability within its FTP fu...