CVE-2024-55026 - Vulnerability Details

An issue in the reset_pj.cgi endpoint of Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 allows unauthorized attackers to execute arbitrary commands via supplying a crafted GET request.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

References

Link	Providers
https://gist.github.com/AenganZ/f86ed0da28825a1432ec697f484622de
https://plain-trick-71d.notion.site/weintek-cMT-3072XH2-14687a89c4c181eeb21ad61e0392f34b?pvs=4

History

Tue, 03 Mar 2026 19:00:00 +0000

Type	Values Removed	Values Added
Description		An issue in the reset_pj.cgi endpoint of Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 allows unauthorized attackers to execute arbitrary commands via supplying a crafted GET request.
References		https://gist.github.com/AenganZ/f86ed0da28825a1432ec697f484622de https://plain-trick-71d.notion.site/weintek-cMT-3072XH2-14687a89c4c181eeb21ad61e0392f34b?pvs=4

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2026-03-03T00:00:00.000Z

Updated: 2026-03-03T18:44:47.456Z

Reserved: 2024-12-06T00:00:00.000Z

Link: CVE-2024-55026

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-03-03T20:16:41.780

Modified: 2026-03-03T21:52:29.877

Link: CVE-2024-55026

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Affected Vendors & Products

Metrics

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object