CVE-2024-55021
HIGH WAF: High
CVSS 7.5
Published: 2026-03-03
CWE-78
Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded password in the FTP protocol.
WAF Coverage Analysis
OS Command Injection
High WAF Coverage
OWASP: A03:2021 Injection
932xxx - Remote Code Execution
Affected Software
| Vendor | Product | Version |
|---|---|---|
| weintek | easyweb | 2.1.53 |
| weintek | cmt-3072xh2_firmware | 20231011 |
References
- gist.github.com (Third Party Advisory)
- plain-trick-71d.notion.site (Third Party Advisory)