CVE-2026-10292

A vulnerability was detected in UTT HiPER 1200GW up to 2.5.3-170306. This affects the function strcpy of the file /goform/formTaskEdit. The manipulation results in stack-based buffer overflow. The attack may be launched remotely. The exploit is now public and may be used...

CVE-2026-10293 UTT HiPER 1200GW formFireWall strcpy stack-based overflow

A flaw has been found in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the function strcpy of the file /goform/formFireWall. This manipulation of the argument Profile causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be...

CVE-2026-10293

CVE-2026-10293 affects UTT HiPER 1200GW (versions up to 2.5.3-170306). The flaw occurs in the strcpy usage of the /goform/formFireWall function, enabling a stack-based buffer overflow via a crafted Profile argument. This allows remote code execution with network access and low privileges; the CVS...

CVE-2026-9628

Summary : CVE-2026-9628 impacts UTT HiPER 1200GW (up to version 2.5.3-170306) via the Web Management Interface. The vulnerability is in /goform/formPptpClientConfig, where manipulating the PPTP server address/username/password/tunnel name triggers a stack-based buffer overflow. The flaw’s attack ...

PT-2026-43472

A security flaw has been discovered in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the function strcpy of the file /goform/setSysAdm of the component Web Management Interface. The manipulation of the argument sysAdmUser/sysAdmPass results in buffer overflow. The attack can be launched...

PT-2026-43474

A vulnerability was detected in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this vulnerability is the function strcpy of the file /goform/formConfigFastDirectionW of the component Web Management Interface. Performing a manipulation of the argument Profile results in stack-based buffer...

CVE-2026-31066

UTT Aggressive HiPER 810G v3v1.7.7-171114 was discovered to contain a buffer overflow in the selDateType parameter of the formTaskEdit function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

EUVD-2026-19038

A security flaw has been discovered in UTT HiPER 1250GW up to 3.2.7-210907-180535. The impacted element is an unknown function of the file /goform/formRemoteControl. The manipulation of the argument Profile results in stack-based buffer overflow. The attack can be executed remotely. The exploit h...

PT-2026-30416

A security flaw has been discovered in UTT HiPER 1250GW up to 3.2.7-210907-180535. The impacted element is an unknown function of the file /goform/formRemoteControl. The manipulation of the argument Profile results in stack-based buffer overflow. The attack can be executed remotely. The exploit h...

CVE-2026-3815

CVE-2026-3815 affects UTT HiPER 810G up to 1.7.7-1711. The vulnerability is in the strcpy usage inside /goform/formApMail, enabling a remote buffer overflow. Public exploits exist. Impact is described with high severity across confidentiality, integrity, and availability. Remediation guidance fro...

CVE-2026-3700

A weakness has been identified in UTT HiPER 810G up to 1.7.7-171114. Affected is the function strcpy of the file /goform/formConfigDnsFilterGlobal. This manipulation causes buffer overflow. Remote exploitation of the attack is possible. The exploit has been made available to the public and could ...

CVE-2026-3699

A security flaw has been discovered in UTT HiPER 810G up to 1.7.7-171114. This impacts the function strcpy of the file /goform/formRemoteControl. The manipulation results in buffer overflow. The attack may be launched remotely. The exploit has been released to the public and may be used for attac...

UTT HiPER 810G 安全漏洞

UTT HiPER 810G is a firewall router produced by UTT Corporation. Versions of UTT HiPER 810G prior to 1.7.7-171114 contained security vulnerabilities. These vulnerabilities were caused by incorrect operations on the strcpy function in the file/goform/formConfigDnsFilterGlobal, which could lead to...

CVE-2026-3016

A vulnerability was identified in UTT HiPER 810G up to 1.7.7-171114. The affected element is the function strcpy of the file /goform/formP2PLimitConfig. The manipulation of the argument except leads to buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly availab...

CVE-2026-2935

The CVE reports a buffer overflow in UTT HiPER 810G (up to version 1.7.7-171114) in the strcpy usage of /goform/ConfigExceptMSN when remark is manipulated. Impact is described as remote execution with high severity (ATT&CK not specified in the documents); exploit publicly available and possible f...

CVE-2026-2904

A vulnerability was determined in UTT HiPER 810G 1.7.7-171114. This affects the function strcpy of the file /goform/ConfigExceptAli. Executing a manipulation can lead to buffer overflow. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized...

PT-2026-21405

Name of the Vulnerable Software and Affected Versions UTT HiPER 810G version 1.7.7-171114 Description A buffer overflow issue exists in the strcpy function within the /goform/ConfigExceptAli file of UTT HiPER 810G version 1.7.7-171114. The strcpy function lacks bounds checking, allowing malicious...

CVE-2026-2135

CVE-2026-2135 affects UTT HiPER 810, version 1.7.4-141218. The vulnerability exists in the function sub_43F020 of the file /goform/formPdbUpConfig, where manipulating the argument policyNames enables a remote command injection. Public exploits are available, enabling remote initiation with likely...

CVE-2025-11653

UTT HiPER 2620G (versions up to 3.1.4) has a buffer overflow in strcpy used by the /goform/fNTP NTPServerIP parameter. This can be triggered remotely, potentially allowing arbitrary code execution or service disruption. Public exploits have been disclosed and vendor contact regarding disclosure w...

EUVD-2025-32471

A vulnerability has been found in UTT HiPER 840G up to 3.1.1-190328. Affected by this issue is the function strcpy of the file /goform/formTaskEdit. The manipulation of the argument txtMin2 leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to...