We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-24777



Assignertalos
Reserved2024-04-26
Published2024-10-30
Updated2024-10-30

Description

A cross-site request forgery (CSRF) vulnerability exists in the Web Application functionality of the LevelOne WBR-6012 R0.40e6. A specially crafted HTTP request can lead to unauthorized access. An attacker can stage a malicious web page to trigger this vulnerability.



HIGH: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Product status

R0.40e6
affected

Credits

Discovered by Patrick DeSantis of Cisco Talos.

References

https://talosintelligence.com/vulnerability_reports/TALOS-2024-1981

cve.org CVE-2024-24777

nvd.nist.gov CVE-2024-24777

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-24777
Subscribe to our newsletter to learn more about our work.