cbcvebase.
CVE-2021-40661
published 2022-10-31

CVE-2021-40661: A remote, unauthenticated, directory traversal vulnerability was identified within the web interface used by IND780 Advanced Weighing Terminals Build 8.0.07…

PriorityP260high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
4.61%
90.5th percentile
A remote, unauthenticated, directory traversal vulnerability was identified within the web interface used by IND780 Advanced Weighing Terminals Build 8.0.07 March 19, 2018 (SS Label 'IND780_8.0.07'), Version 7.2.10 June 18, 2012 (SS Label 'IND780_7.2.10'). It was possible to traverse the folders of the affected host by providing a traversal path to the 'webpage' parameter in AutoCE.ini This could allow a remote unauthenticated adversary to access additional files on the affected system. This could also allow the adversary to perform further enumeration against the affected host to identify the versions of the systems in use, in order to launch further attacks in future.

Affected

2 ranges
VendorProductVersion rangeFixed in
mtind780_firmware
mtind780_firmware

Detection & IOCsextracted from sources · hover to see the quote

url/IND780/excalweb.dll?webpage=../../AutoCE.ini
path/IND780/excalweb.dll
filenameAutoCE.ini
  • Look for HTTP GET requests to '/IND780/excalweb.dll' with a 'webpage' parameter containing directory traversal sequences (e.g., '../../').
  • A successful exploitation response body will contain both 'ExePath=\Windows' and 'WorkDir=\Windows' strings, indicating the AutoCE.ini file was read.
  • Use Shodan queries 'IND780' or 'ind780' to identify exposed devices, and Google dork 'inurl:excalweb.dll' to find internet-facing instances.
  • ·The vulnerability affects two specific firmware versions of IND780 Advanced Weighing Terminals; other versions may not be affected.
  • ·The traversal is unauthenticated and remote — no credentials or prior access are required to exploit this vulnerability.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.