CVSS: 9.0EPSS: 0%CPEs: 2EXPL: 0CVE-2023-50466
https://notcve.org/view.php?id=CVE-2023-50466
19 Dec 2023 — An authenticated command injection vulnerability in Weintek cMT2078X easyweb Web Version v2.1.3, OS v20220215 allows attackers to execute arbitrary code or access sensitive information via injecting a crafted payload into the HMI Name parameter. Una vulnerabilidad de inyección de comando autenticada en Weintek cMT2078X easyweb Web Version v2.1.3, OS v20220215 permite a los atacantes ejecutar código arbitrario o acceder a información confidencial mediante la inyección de un payload manipulado en el parámetro... • https://literate-bakery-10b.notion.site/Weintek-EasyWeb-cMT-Reports-3fc0b10798b54f51a61d719395c408da?pvs=4 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2023-5777 – Weintek EasyBuilder Pro Use of Hard-coded Credentials
https://notcve.org/view.php?id=CVE-2023-5777
06 Nov 2023 — Weintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash report transmission is finished, the private key is exposed to the public, which could result in obtaining remote control of the crash report server. Weintek EasyBuilder Pro contiene una vulnerabilidad que, incluso cuando la clave privada se elimina inmediatamente después de finalizar la transmisión del informe de fallos, la clave privada queda expuesta al público, lo que podría resultar e... • https://www.cisa.gov/news-events/ics-advisories/icsa-23-306-05 • CWE-798: Use of Hard-coded Credentials •
CVSS: 10.0EPSS: 0%CPEs: 14EXPL: 1CVE-2023-43492 – Weintek cMT3000 HMI Web CGI Stack-based Buffer Overflow
https://notcve.org/view.php?id=CVE-2023-43492
19 Oct 2023 — In Weintek's cMT3000 HMI Web CGI device, the cgi-bin codesys.cgi contains a stack-based buffer overflow, which could allow an anonymous attacker to hijack control flow and bypass login authentication. En el dispositivo cMT3000 HMI Web CGI de Weintek, el cgi-bin codesys.cgi contiene un desbordamiento de búfer basado en pila, que podría permitir a un atacante anónimo secuestrar el flujo de control y evitar la autenticación de inicio de sesión. • https://dl.weintek.com/public/Document/TEC/TEC23005E_cMT_Web_Security_Update.pdf • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 9.0EPSS: 0%CPEs: 14EXPL: 0CVE-2023-40145 – Weintek cMT3000 HMI Web CGI OS Command Injection
https://notcve.org/view.php?id=CVE-2023-40145
19 Oct 2023 — In Weintek's cMT3000 HMI Web CGI device, an anonymous attacker can execute arbitrary commands after login to the device. En el dispositivo cMT3000 HMI Web CGI de Weintek, un atacante anónimo puede ejecutar comandos arbitrarios después de iniciar sesión en el dispositivo. • https://dl.weintek.com/public/Document/TEC/TEC23005E_cMT_Web_Security_Update.pdf • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 10.0EPSS: 0%CPEs: 14EXPL: 0CVE-2023-38584 – Weintek cMT3000 HMI Web CGI Stack-based Buffer Overflow
https://notcve.org/view.php?id=CVE-2023-38584
19 Oct 2023 — In Weintek's cMT3000 HMI Web CGI device, the cgi-bin command_wb.cgi contains a stack-based buffer overflow, which could allow an anonymous attacker to hijack control flow and bypass login authentication. En el dispositivo cMT3000 HMI Web CGI de Weintek, cgi-bin command_wb.cgi contiene un desbordamiento de búfer basado en pila, que podría permitir a un atacante anónimo secuestrar el flujo de control y evitar la autenticación de inicio de sesión. • https://dl.weintek.com/public/Document/TEC/TEC23005E_cMT_Web_Security_Update.pdf • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-37362 – Weintek Weincloud Improper Authentication
https://notcve.org/view.php?id=CVE-2023-37362
19 Jul 2023 — Weintek Weincloud v0.13.6 could allow an attacker to abuse the registration functionality to login with testing credentials to the official website. • https://www.cisa.gov/news-events/ics-advisories/icsa-23-199-04 • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-32657 – Weintek Weincloud Improper Restriction of Excessive Authentication Attempts
https://notcve.org/view.php?id=CVE-2023-32657
19 Jul 2023 — Weintek Weincloud v0.13.6 could allow an attacker to efficiently develop a brute force attack on credentials with authentication hints from error message responses. • https://www.cisa.gov/news-events/ics-advisories/icsa-23-199-04 • CWE-307: Improper Restriction of Excessive Authentication Attempts •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-34429 – Weintek Weincloud Improper Handling of Structural Elements
https://notcve.org/view.php?id=CVE-2023-34429
19 Jul 2023 — Weintek Weincloud v0.13.6 could allow an attacker to cause a denial-of-service condition for Weincloud by sending a forged JWT token. • https://www.cisa.gov/news-events/ics-advisories/icsa-23-199-04 • CWE-237: Improper Handling of Structural Elements •
CVSS: 7.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-35134 – Weintek Weincloud Weak Password Recovery Mechanism for Forgotten Password
https://notcve.org/view.php?id=CVE-2023-35134
19 Jul 2023 — Weintek Weincloud v0.13.6 could allow an attacker to reset a password with the corresponding account’s JWT token only. • https://www.cisa.gov/news-events/ics-advisories/icsa-23-199-04 • CWE-640: Weak Password Recovery Mechanism for Forgotten Password •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2023-0104
https://notcve.org/view.php?id=CVE-2023-0104
22 Feb 2023 — The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data. • https://www.cisa.gov/uscert/ics/advisories/icsa-23-045-01 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-29: Path Traversal: '\..\filename' •