CVE-2026-3698

UTT HiPER 810G (up to 1.7.7-171114) contains a vulnerability in the strcpy function inside /goform/NTP that causes a buffer overflow. The issue can be exploited remotely and an exploit is publicly available. Products affected are seemingly limited to the HiPER 810G line; no remediation details ar...

CVE-2026-3698

A vulnerability was identified in UTT HiPER 810G up to 1.7.7-171114. This affects the function strcpy of the file /goform/NTP. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be used...

UTT HiPER 810G 安全漏洞

UTT HiPER 810G is a firewall router produced by UTT Corporation. Versions of UTT HiPER 810G prior to 1.7.7-171114 contained security vulnerabilities. These vulnerabilities were caused by incorrect operations on the strcpy function in the file/goform/NTP, which could lead to buffer overflows...

UTT HiPER 810G 安全漏洞

UTT HiPER 810G is a firewall router produced by UTT Corporation. Versions of UTT HiPER 810G prior to 1.7.7-171114 contained security vulnerabilities. These vulnerabilities were caused by incorrect operations on the strcpy function in the files/goform/formRemoteControl, which could lead to buffer...

PT-2026-23937

Name of the Vulnerable Software and Affected Versions Tenda F453 version 1.0.0.3 Description A stack-based buffer overflow exists in the strcpy function within the /goform/exeCommand file of the Tenda F453 router. The issue is triggered by manipulating the cmdinput argument, potentially allowing...

PT-2026-23910

Name of the Vulnerable Software and Affected Versions UTT HiPER versions up to 1.7.7-171114 Description A flaw exists in UTT HiPER that allows for a buffer overflow. This is due to the use of the strcpy function within the /goform/formConfigDnsFilterGlobal file. Remote exploitation is possible. T...

PT-2026-23908

Name of the Vulnerable Software and Affected Versions UTT HiPER 810G versions through 1.7.7-171114 Description A buffer overflow issue exists in the strcpy function within the /goform/NTP file. Remote attackers can exploit this by manipulating the function, potentially leading to a compromise of...

CVE-2026-24114

An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Failure to validate pPortMapIndex may lead to buffer overflows when using strcpy...

GRUB2 Vulnerable to Out-of-Bounds Write via Network Boot Process in 'grub_strcpy()' Function

A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...

CVE-2026-24114

An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Failure to validate pPortMapIndex may lead to buffer overflows when using strcpy...

PT-2026-22598

Name of the Vulnerable Software and Affected Versions Tenda W20E version 4.0br V15.11.0.6 Description A flaw exists in Tenda W20E version 4.0br V15.11.0.6 related to improper input validation. Specifically, the pPortMapIndex variable is not adequately validated before being used in a strcpy...

CVE-2026-24114

An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Failure to validate pPortMapIndex may lead to buffer overflows when using strcpy...

CVE-2026-24114

An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Failure to validate pPortMapIndex may lead to buffer overflows when using strcpy...

CVE-2026-24114

The CVE-2026-24114 issue affects Tenda W20E (V4.0br_V15.11.0.6). The vulnerability stems from failure to validate the pPortMapIndex, which may cause buffer overflows when strcpy is used. Documented impact is buffer overflow; no further exploit details or conditions are provided in the supplied pa...

EUVD-2026-9186

An issue was discovered in Tenda W20E V4.0brV15.11.0.6. Failure to validate pPortMapIndex may lead to buffer overflows when using strcpy...

EUVD-2026-8784

GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs during NHML file parsing in src/filters/dmxnhml.c. The value of the xmlHeaderEnd XML attribute is copied from att-value into szXmlHeaderEnd1000 using strcpy without any length...

CVE-2026-27821 GPAC NHML Demuxer (dmx_nhml.c) Vulnerable to Stack Buffer Overflow

GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs during NHML file parsing in src/filters/dmxnhml.c. The value of the xmlHeaderEnd XML attribute is copied from att-value into szXmlHeaderEnd1000 using strcpy without any length...

CVE-2026-27821 GPAC NHML Demuxer (dmx_nhml.c) Vulnerable to Stack Buffer Overflow

GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs during NHML file parsing in src/filters/dmxnhml.c. The value of the xmlHeaderEnd XML attribute is copied from att-value into szXmlHeaderEnd1000 using strcpy without any length...

CVE-2026-27821 GPAC NHML Demuxer (dmx_nhml.c) Vulnerable to Stack Buffer Overflow

GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs during NHML file parsing in src/filters/dmxnhml.c. The value of the xmlHeaderEnd XML attribute is copied from att-value into szXmlHeaderEnd1000 using strcpy without any length...

CVE-2026-27821

GPAC has a stack-based overflow in NHML demuxer (dmx_nhml.c) affecting versions up to 26.02.0. The parser copies the xmlHeaderEnd attribute into a 1000-byte buffer with strcpy(), enabling overflow if input exceeds 1000 bytes. A fix is available via commit 9bd7137fded2db40de61a2cf3045812c8741ec52....