High severity8.8NVD Advisory· Published Dec 19, 2023· Updated Jun 17, 2026
CVE-2023-50466
CVE-2023-50466
Description
An authenticated command injection vulnerability in Weintek cMT2078X easyweb Web Version v2.1.3, OS v20220215 allows attackers to execute arbitrary code or access sensitive information via injecting a crafted payload into the HMI Name parameter.
Affected products
2- Weintek/cMT2078X easyweb Webdescription
- Range: v2.1.3, OS v20220215
Patches
Vulnerability mechanics
References
1- literate-bakery-10b.notion.site/Weintek-EasyWeb-cMT-Reports-3fc0b10798b54f51a61d719395c408danvdThird Party Advisory
News mentions
0No linked articles in our index yet.