CVE-2026-10292

A vulnerability was detected in UTT HiPER 1200GW up to 2.5.3-170306. This affects the function strcpy of the file /goform/formTaskEdit. The manipulation results in stack-based buffer overflow. The attack may be launched remotely. The exploit is now public and may be used...

CVE-2026-10292 UTT HiPER 1200GW formTaskEdit strcpy stack-based overflow

A vulnerability was detected in UTT HiPER 1200GW up to 2.5.3-170306. This affects the function strcpy of the file /goform/formTaskEdit. The manipulation results in stack-based buffer overflow. The attack may be launched remotely. The exploit is now public and may be used...

CVE-2026-10292

Technical details are not publicly available in the provided documents. Monitor for updates.

CVE-2026-43623 microtar 0.1.0 Stack-Based Buffer Overflow via raw_to_header()

microtar through 0.1.0 contains a stack-based buffer overflow vulnerability in the rawtoheader function in src/microtar.c that allows attackers to corrupt adjacent stack memory by supplying a crafted TAR archive with non-null-terminated name or linkname fields. The function uses strcpy to copy...

Exploit for CVE-2026-38426

CVE-2026-38426: strcpy Stack Buffer Overflow in Tasmota fetc...

CVE-2026-6186

CVE-2026-6186 affects UT T HiPER 1200GW up to version 2.5.3-170306. The vulnerability targets the strcpy usage in /goform/formNatStaticMap, where manipulating the NatBind argument can cause a buffer overflow. This is a network-exploitable issue with publicly disclosed exploit details (exploitatio...

UTT HiPER 1200GW 安全漏洞

UTT HiPER 1200GW is a wireless gateway device developed by UTT Corporation. Versions of UTT HiPER 1200GW prior to 2.5.3-170306 contained security vulnerabilities. These vulnerabilities were caused by a buffer overflow vulnerability in the strcpy function found in the file/goform/websHostFilter...

CVE-2026-3815 UTT HiPER 810G formApMail strcpy buffer overflow

A weakness has been identified in UTT HiPER 810G up to 1.7.7-1711. This affects the function strcpy of the file /goform/formApMail. Executing a manipulation can lead to buffer overflow. It is possible to launch the attack remotely. The exploit has been made available to the public and could be us...

CVE-2026-3700

A weakness has been identified in UTT HiPER 810G up to 1.7.7-171114. Affected is the function strcpy of the file /goform/formConfigDnsFilterGlobal. This manipulation causes buffer overflow. Remote exploitation of the attack is possible. The exploit has been made available to the public and could ...

CVE-2026-3732

A security vulnerability has been detected in Tenda F453 1.0.0.3. This affects the function strcpy of the file /goform/exeCommand. The manipulation of the argument cmdinput leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed publicl...

CVE-2026-3699 UTT HiPER 810G formRemoteControl strcpy buffer overflow

A security flaw has been discovered in UTT HiPER 810G up to 1.7.7-171114. This impacts the function strcpy of the file /goform/formRemoteControl. The manipulation results in buffer overflow. The attack may be launched remotely. The exploit has been released to the public and may be used for attac...

CVE-2026-3698 UTT HiPER 810G NTP strcpy buffer overflow

A vulnerability was identified in UTT HiPER 810G up to 1.7.7-171114. This affects the function strcpy of the file /goform/NTP. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be used...

CVE-2026-3015 UTT HiPER 810G formPolicyRouteConf strcpy buffer overflow

A vulnerability was determined in UTT HiPER 810G up to 1.7.7-171114. Impacted is the function strcpy of the file /goform/formPolicyRouteConf. Executing a manipulation of the argument GroupName can lead to buffer overflow. The attack may be launched remotely. The exploit has been publicly disclose...

CVE-2026-2980

A vulnerability has been found in UTT HiPER 810G up to 1.7.7-1711. Impacted is the function strcpy of the file /goform/setSysAdm. The manipulation of the argument passwd1 leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used...

CVE-2026-2877 Tenda A18 Httpd Service WifiExtraSet strcpy stack-based overflow

A vulnerability has been found in Tenda A18 15.13.07.13. This affects the function strcpy of the file /goform/WifiExtraSet of the component Httpd Service. The manipulation of the argument wpapskcrypto5g leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The...

CVE-2026-2877

The CVE-2026-2877 affects Tenda A18 (firmware 15.13.07.13) in the Httpd Service’s /goform/WifiExtraSet endpoint. The issue is a stack-based overflow due to unsafe handling of strcpy on the wpapsk_crypto5g parameter, enabling remote initiation of an attack. Public disclosures exist (including NVD,...

CVE-2026-2877 Tenda A18 Httpd Service WifiExtraSet strcpy stack-based overflow

A vulnerability has been found in Tenda A18 15.13.07.13. This affects the function strcpy of the file /goform/WifiExtraSet of the component Httpd Service. The manipulation of the argument wpapskcrypto5g leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The...

CVE-2026-2067

CVE-2026-2067 affects UTT 520W (version 1.7.7-180627). The flaw is a buffer overflow in the strcpy usage of /goform/formTimeGroupConfig’s handling of the year1 argument. This remote-facing condition can be triggered by manipulating input, with the exploit reportedly disclosed publicly. The CVSS d...

CVE-2026-1138 UTT 进取 520W ConfigExceptQQ strcpy buffer overflow

A flaw has been found in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the file /goform/ConfigExceptQQ. Executing a manipulation can lead to buffer overflow. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early abo...

CVE-2026-0840

A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. Affected by this vulnerability is the function strcpy of the file /goform/formConfigNoticeConfig. The manipulation of the argument timestart leads to buffer overflow. It is possible to initiate the attack remotely. The exploi...