PT-2024-23797 · Levelone · Levelone Wbr-6012

Patrick Desantis

Published

2024-10-30

Updated

2024-11-13

CVE-2024-31152

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions LevelOne WBR-6012 router version R0.40e6

Description The issue is related to improper resource allocation within the web application of the router. It can be triggered by a series of crafted HTTP requests, leading to a reboot of the device. This could result in network service interruptions.

Recommendations For LevelOne WBR-6012 router version R0.40e6, consider disabling access to the web application until a fix is available to prevent potential exploitation.

Exploit

Fix

Resource Exhaustion

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-770

Related Identifiers

CVE-2024-31152

Affected Products

Levelone Wbr-6012

PT-2024-23797 · Levelone · Levelone Wbr-6012

CVE-2024-31152

Weakness Enumeration

Related Identifiers

Affected Products

References · 4