CNNVD-202601-3474 Information

CNNVD ID

CNNVD-202601-3474

Related CVE

CVE-2025-14751

• CNNVD Published: 2026-01-22

Description (Chinese)

Weintek cMT X Series是中国台湾Weintek公司的一系列智能人机界面。 Weintek cMT X Series存在安全漏洞，该漏洞源于低权限用户可在不确认用户当前身份验证状态的情况下绕过账户凭据，可能导致未经授权的权限提升。以下产品受到影响：cMT3072XH、cMT3072XH(T)、cMT-SVRX-820、cMT-CTRL01。

Description (English)

Weintek cMT X Series is a series of smart human interfaces for Weintek in Taiwan, China. There is a security loophole in the Weintek cMT X Series, which stems from the fact that low-licensed users can bypass account documents without confirming the current status of the user ’ s identification, which may lead to an increase in unauthorized privileges. The following products were affected: cMT3072XH, cMT3072XH(T), cMT-SVRX-820, cMT-CTRL01.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Weintek

Published

2026-01-22

Last Modified

2026-02-24

References

https://www.cisa.gov/news-events/ics-advisories/icsa-26-022-05 https://access.redhat.com/security/cve/cve-2025-14751

Patch

https://www.weintek.com/