An issue in the LB-LINK BL-W1210M v2.0 router allows attackers to bypass password complexity requirements and set single digit passwords for authentication. This vulnerability can allow attackers to access the router via a brute-force attack.
References
Configurations
Configuration 1 (hide)
AND |
|
History
06 Jun 2025, 17:16
Type | Values Removed | Values Added |
---|---|---|
First Time |
Lb-link bl-w1210m Firmware
Lb-link Lb-link bl-w1210m |
|
References | () https://github.com/ShravanSinghRathore/Security-Advisory-Multiple-Vulnerabilities-in-LB-link-BL-W1210M-Router/wiki/Password-Policy-Bypass--%7C--Inconsistent-Password-Policy-%28CVE%E2%80%902024%E2%80%9033373%29 - Broken Link | |
References | () https://redfoxsec.com/blog/security-advisory-multiple-vulnerabilities-in-lb-link-bl-w1210m-router/ - Third Party Advisory | |
CPE | cpe:2.3:o:lb-link:bl-w1210m_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:lb-link:bl-w1210m:2.0:*:*:*:*:*:*:* |
21 Nov 2024, 09:16
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/ShravanSinghRathore/Security-Advisory-Multiple-Vulnerabilities-in-LB-link-BL-W1210M-Router/wiki/Password-Policy-Bypass--%7C--Inconsistent-Password-Policy-%28CVE%E2%80%902024%E2%80%9033373%29 - | |
References | () https://redfoxsec.com/blog/security-advisory-multiple-vulnerabilities-in-lb-link-bl-w1210m-router/ - |
18 Nov 2024, 22:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-639 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.3 |
17 Jun 2024, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
17 Jun 2024, 12:42
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
14 Jun 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-06-14 16:15
Updated : 2025-06-06 17:16
NVD link : CVE-2024-33373
Mitre link : CVE-2024-33373
CVE.ORG link : CVE-2024-33373
JSON object : View
Products Affected
lb-link
- bl-w1210m_firmware
- bl-w1210m
CWE
CWE-639
Authorization Bypass Through User-Controlled Key