The LevelOne WBR-6012 router's web application has a vulnerability in its firmware version R0.40e6, allowing attackers to change the administrator password and gain higher privileges without the current password.
Credits
Discovered by Patrick DeSantis and Francesco Benvenuto of Cisco Talos.
