CRITICAL🇵🇱 Wersja polska

CVE-2024-55020

CVSS 9.8v3.1pub. 2026-03-03upd. 2026-03-04

A command injection vulnerability in the DHCP activation feature of Weintek cMT-3072XH2 easyweb Web Version v2.1.53, OS v20231011 allows attackers to execute arbitrary commands with root privileges.

🤖 AI Analysis
How it works

The vulnerability results from insufficient input validation (CWE-20) in the DHCP activation function of the easyweb interface. An attacker can submit specially crafted input data containing malicious system commands, which are then passed directly to the operating system command interpreter (CWE-78). Since the vulnerable component runs with root privileges, injected commands are executed with the highest privilege level in the system. The attack is possible remotely over the network without requiring authentication.

Impact

An attacker gains full control of the device with root privileges, enabling data reading and modification, installation of malicious software, disruption of HMI device operation, and potential lateral movement in industrial networks (OT/ICS).

Mitigation & patch

Apply patches available from the manufacturer according to the references. Until updates are applied, it is recommended to isolate the device from public networks, restrict access to the easyweb interface exclusively to trusted hosts using a firewall, and monitor network traffic directed to the device.

Who is affected

Weintek cMT-3072XH2 with easyweb Web Version v2.1.53 and OS v20231011

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Weintek Cmt 3072xh2

    HW
    Weintek
    wszystkie wersje
  • Weintek Cmt 3072xh2 Firmware

    OS
    Weintek
    20231011
  • Weintek Easyweb

    APP
    Weintek
    2.1.53
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Command Injection
CWE
References

Related vulnerabilities

CVE-2024-55026CRITICAL9.8PL ✓ten sam produkt

Wykonanie dowolnych poleceń przez endpoint reset_pj.cgi w Weintek cMT-3072XH2

CVE-2024-55024CRITICAL9.8PL ✓ten sam produkt

Pominięcie uwierzytelniania w Weintek cMT-3072XH2 easyweb — dostęp administracyjny

CVE-2024-55022HIGH8.8ten sam produkt

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain an authenticated command injection...

CVE-2024-55027HIGH7.5ten sam produkt

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to stroe credentials in plaintext in the comp...

CVE-2024-55021HIGH7.5ten sam produkt

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded password in the FTP pr...