Home

Description

Incorrect access control in the component download_wb.cgi of Weintek cMT-3072XH2 easyweb Web Version v2.1.53, OS v20231011 allows unauthenticated attack to download arbitrary files.

PUBLISHED Reserved 2024-12-06 | Published 2026-03-03 | Updated 2026-03-03 | Assigner mitre

References

plain-trick-71d.notion.site/...4c181eeb21ad61e0392f34b?pvs=4

gist.github.com/AenganZ/f86ed0da28825a1432ec697f484622de

cve.org (CVE-2024-55019)

nvd.nist.gov (CVE-2024-55019)

Download JSON