CVE-2024-33377

2024-06-1415:15:50

[email protected]

web.nvd.nist.gov

cve-2024-33377

lb-link bl-w1210m

clickjacking

vulnerability

administrator login page

crafted elements

7.4 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

LB-LINK BL-W1210M v2.0 was discovered to contain a clickjacking vulnerability via the Administrator login page. Attackers can cause victim users to perform arbitrary operations via interaction with crafted elements on the web page.

References

github.com/ShravanSinghRathore/Security-Advisory-Multiple-Vulnerabilities-in-LB-link-BL-W1210M-Router/wiki/Clickjacking-%28CVE%E2%80%902024%E2%80%9033377%29

redfoxsec.com/blog/security-advisory-multiple-vulnerabilities-in-lb-link-bl-w1210m-router/