CNNVD-202601-3470 Information

CNNVD ID

CNNVD-202601-3470

Related CVE

CVE-2025-14750

• CNNVD Published: 2026-01-22

Description (Chinese)

Weintek cMT是Weintek公司的一款人机接口应用。 Weintek cMT存在安全漏洞，该漏洞源于未充分验证假定不可变但实际外部可控的输入，可能导致低权限用户修改参数并操纵账户级别权限。以下产品受到影响：cMT3072XH、cMT3072XH(T)、cMT-SVRX-820、cMT-CTRL01。

Description (English)

Weintek cMT is a human interface application for Weintek. Weintek cMT has a security loophole, which arises from the fact that the presumption is not valid but is actually externally controllable, which may lead to low-permit users modifying parameters and manipulating account level privileges. The following products were affected: cMT3072XH, cMT3072XH(T), cMT-SVRX-820, cMT-CTRL01.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Weintek

Published

2026-01-22

Last Modified

2026-02-24

References

https://www.cisa.gov/news-events/ics-advisories/icsa-26-022-05 https://access.redhat.com/security/cve/cve-2025-14750

Patch

https://www.weintek.com/