Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/02/19 1:28 a.m.12 views

CVE-2025-70998

UTT HiPER 810 / nv810v4 router firmware v1.5.0-140603 was discovered to contain insecure default credentials for the telnet service, possibly allowing a remote attacker to gain root access via a crafted script...

9.8CVSS5.7AI score0.00424EPSS
Exploits1References1
OSV
OSV
added 2026/02/18 4:22 p.m.5 views

CVE-2025-70998

UTT HiPER 810 / nv810v4 router firmware v1.5.0-140603 was discovered to contain insecure default credentials for the telnet service, possibly allowing a remote attacker to gain root access via a crafted script...

9.8CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added 2026/02/18 12:0 a.m.22 views

CVE-2025-70998

UTT HiPER 810 / nv810v4 router firmware v1.5.0-140603 was discovered to contain insecure default credentials for the telnet service, possibly allowing a remote attacker to gain root access via a crafted script...

0.00424EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/02/18 12:0 a.m.7 views

UTT HiPER 810 安全漏洞

UTT HiPER 810 is an intelligent broadband router produced by UTT Corporation. UTT HiPER 810 has a security vulnerability. This vulnerability stems from the use of insecure default credentials in the telnet service, which may allow remote attackers to obtain root access through a specially crafted...

9.8CVSS5.8AI score0.00424EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/09 7:14 a.m.5 views

CVE-2026-2135

A vulnerability was detected in UTT HiPER 810 1.7.4-141218. The impacted element is the function sub43F020 of the file /goform/formPdbUpConfig. Performing a manipulation of the argument policyNames results in command injection. It is possible to initiate the attack remotely. The exploit is now...

8.8CVSS5.5AI score0.04232EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/09 1:33 a.m.4 views

CVE-2026-2118

A vulnerability was determined in UTT HiPER 810 1.7.4-141218. The impacted element is the function sub4407D4 of the file /goform/formReleaseConnect of the component rehttpd. Executing a manipulation of the argument IspName can lead to command injection. The attack can be launched remotely. The...

8.6CVSS6.8AI score0.04239EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/08 1:3 p.m.8 views

CVE-2026-2080

A vulnerability has been found in UTT HiPER 810 1.7.4-141218. This issue affects the function setSysAdm of the file /goform/formUser. The manipulation of the argument passwd1 leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public an...

8.6CVSS6.7AI score0.09369EPSS
Exploits1References1
NVD
NVD
added 2026/02/08 5:16 a.m.11 views

CVE-2026-2135

A vulnerability was detected in UTT HiPER 810 1.7.4-141218. The impacted element is the function sub43F020 of the file /goform/formPdbUpConfig. Performing a manipulation of the argument policyNames results in command injection. It is possible to initiate the attack remotely. The exploit is now...

8.8CVSS0.04232EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/02/08 4:32 a.m.38 views

CVE-2026-2135 UTT HiPER 810 formPdbUpConfig sub_43F020 command injection

A vulnerability was detected in UTT HiPER 810 1.7.4-141218. The impacted element is the function sub43F020 of the file /goform/formPdbUpConfig. Performing a manipulation of the argument policyNames results in command injection. It is possible to initiate the attack remotely. The exploit is now...

6.5CVSS0.04232EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/02/08 4:32 a.m.11 views

CVE-2026-2135 UTT HiPER 810 formPdbUpConfig sub_43F020 command injection

A vulnerability was detected in UTT HiPER 810 1.7.4-141218. The impacted element is the function sub43F020 of the file /goform/formPdbUpConfig. Performing a manipulation of the argument policyNames results in command injection. It is possible to initiate the attack remotely. The exploit is now...

6.5CVSS5.5AI score0.04232EPSS
Exploits1References4
EUVD
EUVD
added 2026/02/08 4:32 a.m.5 views

EUVD-2026-5813

A vulnerability was detected in UTT HiPER 810 1.7.4-141218. The impacted element is the function sub43F020 of the file /goform/formPdbUpConfig. Performing a manipulation of the argument policyNames results in command injection. It is possible to initiate the attack remotely. The exploit is now...

8.8CVSS6.4AI score0.04232EPSS
Exploits1References4
OSV
OSV
added 2026/02/08 1:16 a.m.3 views

CVE-2026-2118

A vulnerability was determined in UTT HiPER 810 1.7.4-141218. The impacted element is the function sub4407D4 of the file /goform/formReleaseConnect of the component rehttpd. Executing a manipulation of the argument IspName can lead to command injection. The attack can be launched remotely. The...

7.2CVSS5.6AI score0.04239EPSS
Exploits1References5
EUVD
EUVD
added 2026/02/08 12:2 a.m.5 views

EUVD-2026-5827

A vulnerability was determined in UTT HiPER 810 1.7.4-141218. The impacted element is the function sub4407D4 of the file /goform/formReleaseConnect of the component rehttpd. Executing a manipulation of the argument IspName can lead to command injection. The attack can be launched remotely. The...

8.6CVSS6.8AI score0.04239EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/08 12:0 a.m.6 views

UTT HiPER 810 命令注入漏洞

UTT HiPER 810 is an intelligent broadband router developed by UTT Corporation. The version 1.7.4-141218 of UTT HiPER 810 contains a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter IspName in the function sub4407D4 within the rehttpd component’s...

8.6CVSS7.1AI score0.04239EPSS
Exploits1References5
NVD
NVD
added 2026/02/07 9:16 a.m.7 views

CVE-2026-2080

A vulnerability has been found in UTT HiPER 810 1.7.4-141218. This issue affects the function setSysAdm of the file /goform/formUser. The manipulation of the argument passwd1 leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public an...

8.6CVSS0.09369EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/02/07 9:2 a.m.31 views

CVE-2026-2080 UTT HiPER 810 formUser setSysAdm command injection

A vulnerability has been found in UTT HiPER 810 1.7.4-141218. This issue affects the function setSysAdm of the file /goform/formUser. The manipulation of the argument passwd1 leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public an...

8.6CVSS0.09369EPSS
Exploits1References5
CVE
CVE
added 2026/02/07 9:2 a.m.21 views

CVE-2026-2080

UTT HiPER 810 (version 1.7.4-141218) is affected by CVE-2026-2080 through the setSysAdm function in /goform/formUser. Manipulating the passwd1 argument enables command injection and allows remote exploitation. Public disclosures exist; vendor reportedly did not respond. Mitigation guidance across...

8.6CVSS6.7AI score0.09369EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2026/02/07 12:0 a.m.7 views

UTT HiPER 810 命令注入漏洞

UTT HiPER 810 is an intelligent broadband router developed by UTT Corporation. The version 1.7.4-141218 of UTT HiPER 810 contains a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter passwd1 in the file/goform/formUser, which may lead to command...

8.6CVSS7.1AI score0.09369EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/01/20 5:21 p.m.5 views

CVE-2026-1162

A flaw has been found in UTT HiPER 810 1.7.4-141218. The impacted element is the function strcpy of the file /goform/setSysAdm. This manipulation of the argument passwd1 causes buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used...

10CVSS5.7AI score0.00681EPSS
Exploits0References1
NVD
NVD
added 2026/01/19 5:15 p.m.10 views

CVE-2026-1162

A flaw has been found in UTT HiPER 810 1.7.4-141218. The impacted element is the function strcpy of the file /goform/setSysAdm. This manipulation of the argument passwd1 causes buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used...

10CVSS0.00681EPSS
Exploits0References5
Rows per page
Query Builder