Vulnerability CVE-2023-43492
Published: 2023-10-19

Description:









In Weintek's cMT3000 HMI Web CGI device, the cgi-bin codesys.cgi contains a stack-based buffer overflow, which could allow an anonymous attacker to hijack control flow and bypass login authentication.

 References:
https://www.cisa.gov/news-events/ics-advisories/icsa-23-285-12
https://dl.weintek.com/public/Document/TEC/TEC23005E_cMT_Web_Security_Update.pdf
Copyright 2026, cxsecurity.com

 

Back to Top