CVE-2024-55024
Published: 03 March 2026
Description
An authentication bypass vulnerability in the authorization mechanism of Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 allows unauthorized attackers to perform Administrative actions using service accounts.
Mitigating Controls (NIST 800-53 r5)AI
Enforces approved authorizations to directly prevent unauthorized administrative actions via authentication bypass in the authorization mechanism.
Limits privileges of service accounts to the minimum necessary, blocking administrative access even if exploited.
Manages system accounts including service accounts to restrict creation, usage, and privileges that could be abused for bypass.
Security SummaryAI
CVE-2024-55024 is an authentication bypass vulnerability in the authorization mechanism of Weintek cMT-3072XH2 running easyweb v2.1.53 and OS v20231011. Published on 2026-03-03, it carries a CVSS v3.1 base score of 9.8 (Critical), stemming from CWE-693 (Protection Mechanism Failure). The flaw enables unauthorized access to administrative functions via service accounts, compromising the device's security controls.
Remote attackers can exploit this vulnerability over the network with low complexity, requiring no privileges, user interaction, or special conditions (AV:N/AC:L/PR:N/UI:N/S:U). Successful exploitation grants full administrative privileges, allowing high-impact outcomes including unauthorized data access (C:H), system modifications (I:H), and service disruptions (A:H).
For mitigation details, refer to the vendor advisories and related resources at https://gist.github.com/AenganZ/f86ed0da28825a1432ec697f484622de and https://plain-trick-71d.notion.site/weintek-cMT-3072XH2-14687a89c4c181eeb21ad61e0392f34b?pvs=4.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
The vulnerability is an authentication bypass in a public-facing web service (easyWeb on Weintek HMI device), directly enabling remote exploitation of a public-facing application to gain administrative access.