The Weintek cMT product line is vulnerable to various improper access controls, which may allow an unauthenticated attacker to remotely access and download sensitive information and perform administrative actions on behalf of a legitimate administrator.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HWeintek Cmt3071
HWWeintekwszystkie wersjeWeintek Cmt3071 Firmware
OSWeintek< 20210218Weintek Cmt3072
HWWeintekwszystkie wersjeWeintek Cmt3072 Firmware
OSWeintek< 20210218Weintek Cmt3090
HWWeintekwszystkie wersjeWeintek Cmt3090 Firmware
OSWeintek< 20210218Weintek Cmt3103
HWWeintekwszystkie wersjeWeintek Cmt3103 Firmware
OSWeintek< 20210218Weintek Cmt3151
HWWeintekwszystkie wersjeWeintek Cmt3151 Firmware
OSWeintek< 20210218Weintek Cmt Ctrl01
HWWeintekwszystkie wersjeWeintek Cmt Ctrl01 Firmware
OSWeintek< 20210302Weintek Cmt Fhd
HWWeintekwszystkie wersjeWeintek Cmt Fhd Firmware
OSWeintek< 20210208Weintek Cmt G01
HWWeintekwszystkie wersjeWeintek Cmt G01 Firmware
OSWeintek< 20210209Weintek Cmt G02
HWWeintekwszystkie wersjeWeintek Cmt G02 Firmware
OSWeintek< 20210209Weintek Cmt G03
HWWeintekwszystkie wersjeWeintek Cmt G03 Firmware
OSWeintek< 20210222Weintek Cmt G04
HWWeintekwszystkie wersjeWeintek Cmt G04 Firmware
OSWeintek< 20210222Weintek Cmt Hdm
HWWeintekwszystkie wersjeWeintek Cmt Hdm Firmware
OSWeintek< 20210204Weintek Cmt Svr 100
HWWeintekwszystkie wersjeWeintek Cmt Svr 100 Firmware
OSWeintek< 20210305Weintek Cmt Svr 102
HWWeintekwszystkie wersjeWeintek Cmt Svr 102 Firmware
OSWeintek< 20210305Weintek Cmt Svr 200
HWWeintekwszystkie wersjeWeintek Cmt Svr 200 Firmware
OSWeintek< 20210305
Related vulnerabilities
In Weintek's cMT3000 HMI Web CGI device, the cgi-bin command_wb.cgi contains a stack-based buffer overf...
In Weintek's cMT3000 HMI Web CGI device, the cgi-bin codesys.cgi contains a stack-based buffer overfl...
The Weintek cMT product line is vulnerable to a cross-site scripting vulnerability, which could allow an unaut...
The Weintek cMT product line is vulnerable to code injection, which may allow an unauthenticated remote attack...
In Weintek's cMT3000 HMI Web CGI device, an anonymous attacker can execute arbitrary commands after l...