U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2024-31151

Change History

New CVE Received from Talos 10/30/2024 10:15:05 AM

Action Type Old Value New Value
Added Description

								
							
							
						
A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access during the first 30 seconds post-boot. Other vulnerabilities can force a reboot, circumventing the initial time restriction for exploitation.The password string can be found at addresses 0x 803cdd0f and 0x803da3e6:

    803cdd0f 41 72 69 65        ds         "AriesSerenaCairryNativitaMegan"
             73 53 65 72 
             65 6e 61 43
             ...

It is referenced by the function at 0x800b78b0 and simplified in the pseudocode below:

    if (is_equal = strcmp(password,"AriesSerenaCairryNativitaMegan"){
        ret = 3;}

Where 3 is the return value to user-level access (0 being fail and 1 being admin/backdoor).

While there's no legitimate functionality to change this password, once authenticated it is possible manually make a change by taking advantage of TALOS-2024-XXXXX using HTTP POST paramater "Pu" (new user password) in place of "Pa" (new admin password).
Added CVSS V3.1

								
							
							
						
Talos AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Added CWE

								
							
							
						
Talos CWE-798
Added Reference

								
							
							
						
Talos https://talosintelligence.com/vulnerability_reports/TALOS-2024-1979 [No types assigned]