CVE-2024-11981

EUVD-2024-34038
Certain models of routers from Billion Electric has an Authentication Bypass vulnerability, allowing unautheticated attackers to retrive contents of arbitrary web pages.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
billion_electricm100
1.04.1.592.* ≤
𝑥
< 1.04.1.592.8
ADP
billion_electricm100
1.04.1.613.* ≤
𝑥
< 1.04.1.613.13
ADP
billion_electricm100
1.04.1.* < ≤
𝑥
< 1.04.1.675
ADP
billion_electricm150
1.04.1.592.* ≤
𝑥
< 1.04.1.592.8
ADP
billion_electricm150
1.04.1.613.* ≤
𝑥
< 1.04.1.613.13
ADP
billion_electricm150
1.04.1.* < ≤
𝑥
< 1.04.1.675
ADP
billion_electricm120n
1.04.1.592.* ≤
𝑥
< 1.04.1.592.8
ADP
billion_electricm120n
1.04.1.613.* ≤
𝑥
< 1.04.1.613.13
ADP
billion_electricm120n
1.04.1.* < ≤
𝑥
< 1.04.1.675
ADP
billion_electricm500
1.04.1.592.* ≤
𝑥
< 1.04.1.592.8
ADP
billion_electricm500
1.04.1.613.* ≤
𝑥
< 1.04.1.613.13
ADP
billion_electricm500
1.04.1.* < ≤
𝑥
< 1.04.1.675
ADP
Common Weakness Enumeration
References
https://www.twcert.org.tw/en/cp-139-8276-1defb-2.html
https://www.twcert.org.tw/tw/cp-132-8275-50f42-1.html