Known Vulnerabilities for products from Weintek
Listed below are 12 of the newest known vulnerabilities associated with the vendor "Weintek".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-43492 | In Weintek's cMT3000 HMI Web CGI device, the cgi-bin codesys.cgi contains a stack-based buffer overflow, which could... | 9.8 - CRITICAL | 2023-10-19 | 2023-10-30 |
| CVE-2023-40145 | In Weintek's cMT3000 HMI Web CGI device, an anonymous attacker can execute arbitrary commands after login to the dev... | 8.8 - HIGH | 2023-10-19 | 2023-10-26 |
| CVE-2023-38584 | In Weintek's cMT3000 HMI Web CGI device, the cgi-bin command_wb.cgi contains a stack-based buffer overflow, which coul... | 9.8 - CRITICAL | 2023-10-19 | 2023-10-26 |
| CVE-2023-37362 | Weintek Weincloud v0.13.6 could allow an attacker to abuse the registration functionality to login with testing creden... | 8.8 - HIGH | 2023-07-19 | 2023-07-26 |
| CVE-2023-35134 | Weintek Weincloud v0.13.6 could allow an attacker to reset a password with the corresponding account’s JWT token only.... | 5.9 - MEDIUM | 2023-07-19 | 2023-07-26 |
| CVE-2023-34429 | Weintek Weincloud v0.13.6 could allow an attacker to cause a denial-of-service condition for Weincloud by sending a fo... | 7.5 - HIGH | 2023-07-19 | 2023-07-26 |
| CVE-2023-32657 | Weintek Weincloud v0.13.6 could allow an attacker to efficiently develop a brute force attack on credentials with auth... | 7.5 - HIGH | 2023-07-19 | 2023-07-26 |
| CVE-2023-5777 | Weintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash re... | 9.8 - CRITICAL | 2023-11-06 | 2023-11-14 |
| CVE-2023-0104 | The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project ... | 7.8 - HIGH | 2023-02-22 | 2023-11-07 |
| CVE-2021-27446 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-05-16 | 2022-05-25 |
| CVE-2021-27444 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-05-16 | 2022-07-29 |
| CVE-2021-27442 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2022-05-16 | 2022-05-25 |