Lucene search

[email protected]NVD:CVE-2023-43492

HistoryOct 19, 2023 - 8:15 p.m.

CVE-2023-43492

2023-10-1920:15:09

CWE-121

CWE-787

[email protected]

web.nvd.nist.gov

weintek

cmt3000

buffer overflow

authentication bypass

cgi

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.001

Percentile

40.7%

JSON

In Weintek’s cMT3000 HMI Web CGI device, the cgi-bin codesys.cgi contains a stack-based buffer overflow, which could allow an anonymous attacker to hijack control flow and bypass login authentication.

Affected configurations

Nvd

Node

weintekcmt-fhdMatch-

AND

weintekcmt-fhd_firmwareRange<20210212

Node

weintekcmt-hdmMatch-

AND

weintekcmt-hdm_firmwareRange<20210206

Node

weintekcmt3071Match-

AND

weintekcmt3071_firmwareRange<20210220

Node

weintekcmt3072Match-

AND

weintekcmt3072_firmwareRange<20210220

Node

weintekcmt3090Match-

AND

weintekcmt3090_firmwareRange<20210220

Node

weintekcmt3103Match-

AND

weintekcmt3103_firmwareRange<20210220

Node

weintekcmt3151Match-

AND

weintekcmt3151_firmwareRange<20210220

VendorProductVersionCPE
weintekcmt-fhd-cpe:2.3:h:weintek:cmt-fhd:-:*:*:*:*:*:*:*
weintekcmt-fhd_firmware*cpe:2.3:o:weintek:cmt-fhd_firmware:*:*:*:*:*:*:*:*
weintekcmt-hdm-cpe:2.3:h:weintek:cmt-hdm:-:*:*:*:*:*:*:*
weintekcmt-hdm_firmware*cpe:2.3:o:weintek:cmt-hdm_firmware:*:*:*:*:*:*:*:*
weintekcmt3071-cpe:2.3:h:weintek:cmt3071:-:*:*:*:*:*:*:*
weintekcmt3071_firmware*cpe:2.3:o:weintek:cmt3071_firmware:*:*:*:*:*:*:*:*
weintekcmt3072-cpe:2.3:h:weintek:cmt3072:-:*:*:*:*:*:*:*
weintekcmt3072_firmware*cpe:2.3:o:weintek:cmt3072_firmware:*:*:*:*:*:*:*:*
weintekcmt3090-cpe:2.3:h:weintek:cmt3090:-:*:*:*:*:*:*:*
weintekcmt3090_firmware*cpe:2.3:o:weintek:cmt3090_firmware:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
weintek	cmt-fhd	-	cpe:2.3:h:weintek:cmt-fhd:-:::::::*
weintek	cmt-fhd_firmware	*	cpe:2.3:o:weintek:cmt-fhd_firmware::::::::
weintek	cmt-hdm	-	cpe:2.3:h:weintek:cmt-hdm:-:::::::*
weintek	cmt-hdm_firmware	*	cpe:2.3:o:weintek:cmt-hdm_firmware::::::::
weintek	cmt3071	-	cpe:2.3:h:weintek:cmt3071:-:::::::*
weintek	cmt3071_firmware	*	cpe:2.3:o:weintek:cmt3071_firmware::::::::
weintek	cmt3072	-	cpe:2.3:h:weintek:cmt3072:-:::::::*
weintek	cmt3072_firmware	*	cpe:2.3:o:weintek:cmt3072_firmware::::::::
weintek	cmt3090	-	cpe:2.3:h:weintek:cmt3090:-:::::::*
weintek	cmt3090_firmware	*	cpe:2.3:o:weintek:cmt3090_firmware::::::::

Rows per page:

1-10 of 141

References

dl.weintek.com/public/Document/TEC/TEC23005E_cMT_Web_Security_Update.pdf

www.cisa.gov/news-events/ics-advisories/icsa-23-285-12

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.001

Percentile

40.7%

JSON

Related for NVD:CVE-2023-43492

prion1 cve1 cvelist1 ics1