A hard-coded password vulnerability exists in the telnetd functionality of LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623. A set of specially crafted network packets can lead to arbitrary command execution.
The telnetd service embedded in the firmware of the LevelOne WBR-6013 router (version RER4_A_v3411b_2T2R_LEV_09_170623) contains a hard-coded password that cannot be changed by the user. An attacker, by sending specially crafted network packets, can use this password to authenticate to the telnetd service without knowledge of actual credentials. As a result, it is possible to execute arbitrary system commands on the device.
An attacker gains full control over the device — can execute arbitrary commands, modify configuration, intercept network traffic, and potentially use the router as an entry point to the internal network.
Patches available from the manufacturer should be applied according to the references. Additionally, until the patch is deployed, it is recommended to block access to the telnetd service at the firewall level and restrict access to the device only from trusted IP addresses.
LevelOne WBR-6013 with firmware version RER4_A_v3411b_2T2R_LEV_09_170623
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HLevel1 Wbr 6013
HWLevel1wszystkie wersjeLevel1 Wbr 6013 Firmware
OSLevel1rer4_a_v3411b_2t2r_lev_09_170623
Related vulnerabilities
A stack-based buffer overflow vulnerability exists in the boa formRoute functionality of Realtek rtl819x Jungl...
A stack-based buffer overflow vulnerability exists in the boa setRepeaterSsid functionality of Realtek rtl819x...
An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of Realtek rtl819x Jun...
A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality of Realtek r...
A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle SDK v3.4....