Weintek recommends users follow their Upgrade Instructions https://dl.weintek.com/public/Document/UM0/UM018010E_cMT_Series_OS_Update_Instructions_eng.pdf to update the following products to the latest versions:
* cMT-FHD: OS version 20210211
* cMT-HDM: OS version 20210205
* cMT3071: OS version 20210219
* cMT3072: OS version 20210219
* cMT3103: OS version 20210219
* cMT3090: OS version 20210219
* cMT3151: OS version 20210219
For additional information, refer to Weintek's security bulletin https://dl.weintek.com/public/Document/TEC/TEC23005E_cMT_Web_Security_Update.pdf .
Configurations
Workarounds
Exploits
Credits
finder
Hank Chen (PSIRT and Threat Research of TXOne Networks) reported these vulnerabilities to CISA.