Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Weintek — Vulnerabilities & Security Advisories 14

Browse all 14 CVE security advisories affecting Weintek. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Weintek specializes in industrial human-machine interfaces (HMIs) and industrial automation systems, primarily serving manufacturing and process control industries. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and insecure default configurations. Security researchers have identified multiple authentication bypass flaws and insecure network services in their devices. While no major public security incidents have been widely reported, the accumulation of 14 CVEs indicates persistent security challenges in their product lines, particularly regarding secure coding practices and secure default configurations.

Top products by Weintek: Weincloud cMT-SVR-1xx/2xx cMT-FHD cMT3072XH EasyBuilder Pro cMT EasyBuilder Pro
CVE IDTitleCVSSSeverityPublished
CVE-2025-14751 Unverified Password Change in Weintek cMT X Series HMI EasyWeb Service — cMT3072XHCWE-620 8.8AIHighAI2026-01-22
CVE-2025-14750 External Control of Assumed-Immutable Web Parameter in Weintek cMT X Series HMI EasyWeb Service — cMT3072XHCWE-472 8.0AIHighAI2026-01-22
CVE-2023-5777 Weintek EasyBuilder Pro Use of Hard-coded Credentials — EasyBuilder ProCWE-798 9.8 Critical2023-11-06
CVE-2023-43492 Weintek cMT3000 HMI Web CGI Stack-based Buffer Overflow — cMT-FHDCWE-121 9.8 Critical2023-10-19
CVE-2023-40145 Weintek cMT3000 HMI Web CGI OS Command Injection — cMT-FHDCWE-78 8.8 High2023-10-19
CVE-2023-38584 Weintek cMT3000 HMI Web CGI Stack-based Buffer Overflow — cMT-FHDCWE-121 9.8 Critical2023-10-19
CVE-2023-37362 Weintek Weincloud Improper Authentication — WeincloudCWE-522 7.2 High2023-07-19
CVE-2023-32657 Weintek Weincloud Improper Restriction of Excessive Authentication Attempts — WeincloudCWE-307 5.3 Medium2023-07-19
CVE-2023-34429 Weintek Weincloud Improper Handling of Structural Elements — WeincloudCWE-237 7.5 High2023-07-19
CVE-2023-35134 Weintek Weincloud Weak Password Recovery Mechanism for Forgotten Password — WeincloudCWE-640 7.4 High2023-07-19
CVE-2023-0104 Weintek EasyBuilder Pro 路径遍历漏洞 — EasyBuilder Pro cMT CWE-29 9.3 Critical2023-02-22
CVE-2021-27446 Weintek EasyWeb cMT Code Injection — cMT-SVR-1xx/2xxCWE-94 10.0 Critical2022-05-16
CVE-2021-27444 Weintek EasyWeb cMT Improper Access Control — cMT-SVR-1xx/2xxCWE-284 9.8 Critical2022-05-16
CVE-2021-27442 Weintek EasyWeb cMT Cross-site Scripting — cMT-SVR-1xx/2xxCWE-79 9.4 Critical2022-05-16

This page lists every published CVE security advisory associated with Weintek. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.