Weintek cMT-3072XH2 Command Injection Vulnerability in DHCP Configuration

Vulnerability

A command injection vulnerability has been identified in the Weintek cMT-3072XH2 HMI device, specifically in the DHCP activation feature of the easyweb Web Version 2.1.53, running on OS version 20231011. This vulnerability allows attackers to execute arbitrary commands with root privileges. The issue arises from improper input validation, which enables user-controlled input to be passed directly to system commands without proper sanitization. Exploitation of this vulnerability does not require a system reboot, allowing for immediate execution of injected commands.

Impact

Exploitation of this vulnerability allows for real-time command injection, with executed commands running with elevated privileges. This could lead to unauthorized access, manipulation of system functions, and potential disruption of industrial processes controlled by the HMI.

Added: Mar 3, 2026, 8:38 PM

Updated: Mar 3, 2026, 10:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.9

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.9

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Weintek cMT-3072XH2 Command Injection Vulnerability in DHCP Configuration

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating