CRITICAL🇵🇱 Wersja polska

CVE-2024-55026

CVSS 9.8v3.1pub. 2026-03-03upd. 2026-03-04

An issue in the reset_pj.cgi endpoint of Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 allows unauthorized attackers to execute arbitrary commands via supplying a crafted GET request.

🤖 AI Analysis
How it works

The attacker sends a specially crafted HTTP GET request to the reset_pj.cgi endpoint available in the device's easyweb interface. The endpoint does not verify the requester's identity or filter input data, leading to the execution of system commands embedded in the request in the device's context. The vulnerability is classified as CWE-256, indicating unsafe storage or handling of authentication data.

Impact

An unauthenticated remote attacker can execute arbitrary commands on the device, leading to a complete breach of confidentiality, integrity and availability of the system, including potential takeover of the HMI panel in an industrial environment.

Mitigation & patch

Patches available from the manufacturer should be applied according to the references. Until the fix is deployed, it is recommended to restrict network access to the easyweb interface through a firewall, implement OT/ICS network segmentation, and disable unused network interfaces on the device.

Who is affected

Weintek cMT-3072XH2 with easyweb v2.1.53 software and OS v20231011 operating system

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Weintek Cmt 3072xh2

    HW
    Weintek
    wszystkie wersje
  • Weintek Cmt 3072xh2 Firmware

    OS
    Weintek
    20231011
  • Weintek Easyweb

    APP
    Weintek
    2.1.53
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-55020CRITICAL9.8PL ✓ten sam produkt

Command injection z uprawnieniami root w Weintek cMT-3072XH2 easyweb

CVE-2024-55024CRITICAL9.8PL ✓ten sam produkt

Pominięcie uwierzytelniania w Weintek cMT-3072XH2 easyweb — dostęp administracyjny

CVE-2024-55022HIGH8.8ten sam produkt

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain an authenticated command injection...

CVE-2024-55019HIGH7.5ten sam produkt

Incorrect access control in the component download_wb.cgi of Weintek cMT-3072XH2 easyweb Web Version v2.1.53, ...

CVE-2024-55021HIGH7.5ten sam produkt

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded password in the FTP pr...