The Weintek cMT product line is vulnerable to various improper access controls, which may allow an unauthenticated attacker to remotely access and download sensitive information and perform administrative actions on behalf of a legitimate administrator.
References
Link | Resource |
---|---|
https://dl.weintek.com/public/Document/TEC/TEC21001E_cMT_EasyWeb_V1_Security_Issues.pdf | Mitigation Vendor Advisory |
https://www.cisa.gov/uscert/ics/advisories/icsa-21-082-01 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
Configuration 14 (hide)
AND |
|
Configuration 15 (hide)
AND |
|
Configuration 16 (hide)
AND |
|
History
29 Jul 2022, 13:24
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-Other |
25 May 2022, 16:21
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-287 | |
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
First Time |
Weintek cmt-fhd Firmware
Weintek cmt-g02 Firmware Weintek cmt-hdm Firmware Weintek cmt-g02 Weintek cmt-g03 Firmware Weintek cmt-ctrl01 Weintek cmt-svr-102 Firmware Weintek cmt-svr-100 Firmware Weintek cmt-fhd Weintek cmt-g03 Weintek cmt3151 Firmware Weintek cmt3071 Weintek cmt-ctrl01 Firmware Weintek cmt-g04 Firmware Weintek cmt3090 Weintek cmt-g01 Firmware Weintek cmt-g01 Weintek cmt3072 Firmware Weintek cmt3072 Weintek cmt3090 Firmware Weintek cmt-svr-200 Firmware Weintek cmt-svr-202 Firmware Weintek cmt-g04 Weintek cmt-hdm Weintek cmt3151 Weintek cmt-svr-102 Weintek cmt3103 Firmware Weintek cmt-svr-100 Weintek Weintek cmt3071 Firmware Weintek cmt-svr-200 Weintek cmt-svr-202 Weintek cmt3103 |
|
CPE | cpe:2.3:o:weintek:cmt-g01_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt3103_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt3090:-:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt3072:-:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt-g01:-:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt3151_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt-svr-100_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt3072_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt-svr-200:-:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt-svr-202_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt3151:-:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt-svr-102_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt-g03:-:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt-svr-102:-:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt-g03_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt-fhd_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt-g02_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt-svr-100:-:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt3090_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt-hdm_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt3071:-:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt-g04:-:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt3103:-:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt-fhd:-:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt-ctrl01_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt-ctrl01:-:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt-svr-200_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt-g02:-:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt3071_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt-hdm:-:*:*:*:*:*:*:* cpe:2.3:h:weintek:cmt-svr-202:-:*:*:*:*:*:*:* cpe:2.3:o:weintek:cmt-g04_firmware:*:*:*:*:*:*:*:* |
|
References | (MISC) https://www.cisa.gov/uscert/ics/advisories/icsa-21-082-01 - Third Party Advisory, US Government Resource | |
References | (CONFIRM) https://dl.weintek.com/public/Document/TEC/TEC21001E_cMT_EasyWeb_V1_Security_Issues.pdf - Mitigation, Vendor Advisory |
16 May 2022, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-05-16 18:15
Updated : 2023-12-10 14:22
NVD link : CVE-2021-27444
Mitre link : CVE-2021-27444
CVE.ORG link : CVE-2021-27444
JSON object : View
Products Affected
weintek
- cmt3090_firmware
- cmt3072_firmware
- cmt3103
- cmt-svr-202
- cmt-ctrl01
- cmt3071_firmware
- cmt-svr-100
- cmt-g02
- cmt3103_firmware
- cmt3151_firmware
- cmt-fhd
- cmt-g02_firmware
- cmt-fhd_firmware
- cmt-g04_firmware
- cmt-g03_firmware
- cmt-svr-202_firmware
- cmt3071
- cmt-g01_firmware
- cmt-ctrl01_firmware
- cmt3072
- cmt-g03
- cmt3151
- cmt-svr-102
- cmt-svr-200
- cmt-svr-102_firmware
- cmt-g01
- cmt-svr-200_firmware
- cmt3090
- cmt-svr-100_firmware
- cmt-g04
- cmt-hdm_firmware
- cmt-hdm
CWE