Lucene search
IcscertCVE-2023-38584HistoryOct 19, 2023 - 8:15 p.m.
CVE-2023-38584
2023-10-1920:15:09
CWE-787
CWE-121
icscert
web.nvd.nist.gov
17
weintek
cmt3000
hmi
web
cgi
buffer overflow
authentication bypass
cve-2023-38584
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0.001
Percentile
42.6%
In Weintekβs cMT3000 HMI Web CGI device, the cgi-bin command_wb.cgi contains a stack-based buffer overflow, which could allow an anonymous attacker to hijack control flow and bypass login authentication.
Affected configurations
Node
weintekcmt-fhd_firmwareRange<20210212
weintekcmt-fhdMatch-
Node
weintekcmt-hdm_firmwareRange<20210206
weintekcmt-hdmMatch-
Node
weintekcmt3071_firmwareRange<20210220
weintekcmt3071Match-
Node
weintekcmt3072_firmwareRange<20210220
weintekcmt3072Match-
Node
weintekcmt3090_firmwareRange<20210220
weintekcmt3090Match-
Node
weintekcmt3103_firmwareRange<20210220
weintekcmt3103Match-
Node
weintekcmt3151_firmwareRange<20210220
weintekcmt3151Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| weintek | cmt-fhd_firmware | * | cpe:2.3:o:weintek:cmt-fhd_firmware:*:*:*:*:*:*:*:* |
| weintek | cmt-fhd | - | cpe:2.3:h:weintek:cmt-fhd:-:*:*:*:*:*:*:* |
| weintek | cmt-hdm_firmware | * | cpe:2.3:o:weintek:cmt-hdm_firmware:*:*:*:*:*:*:*:* |
| weintek | cmt-hdm | - | cpe:2.3:h:weintek:cmt-hdm:-:*:*:*:*:*:*:* |
| weintek | cmt3071_firmware | * | cpe:2.3:o:weintek:cmt3071_firmware:*:*:*:*:*:*:*:* |
| weintek | cmt3071 | - | cpe:2.3:h:weintek:cmt3071:-:*:*:*:*:*:*:* |
| weintek | cmt3072_firmware | * | cpe:2.3:o:weintek:cmt3072_firmware:*:*:*:*:*:*:*:* |
| weintek | cmt3072 | - | cpe:2.3:h:weintek:cmt3072:-:*:*:*:*:*:*:* |
| weintek | cmt3090_firmware | * | cpe:2.3:o:weintek:cmt3090_firmware:*:*:*:*:*:*:*:* |
| weintek | cmt3090 | - | cpe:2.3:h:weintek:cmt3090:-:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "cMT-FHD",
"vendor": "Weintek",
"versions": [
{
"lessThanOrEqual": "20210210 ",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "cMT-HDM",
"vendor": "Weintek",
"versions": [
{
"lessThanOrEqual": "20210204 ",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "cMT3071",
"vendor": "Weintek",
"versions": [
{
"lessThanOrEqual": "20210218",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "cMT3072",
"vendor": "Weintek",
"versions": [
{
"lessThanOrEqual": "20210218",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "cMT3103",
"vendor": "Weintek",
"versions": [
{
"lessThanOrEqual": "20210218",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "cMT3090",
"vendor": "Weintek",
"versions": [
{
"lessThanOrEqual": "20210218",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "cMT3151",
"vendor": "Weintek",
"versions": [
{
"lessThanOrEqual": "20210218",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-38584
2023-10-19 20:15:09
prion
prion
Stack overflow
2023-10-19 20:15:00
cvelist
cvelist
CVE-2023-38584 Weintek cMT3000 HMI Web CGI Stack-based Buffer Overflow
2023-10-19 19:20:20
ics
ics
Weintek cMT3000 HMI Web CGI
2023-10-12 12:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0.001
Percentile
42.6%
Related for CVE-2023-38584