PT-2025-53416

Name of the Vulnerable Software and Affected Versions UTT 进取 512W versions through 1.7.7-171114 Description A buffer overflow issue exists in UTT 进取 512W. The issue is related to the strcpy function within the /goform/APSecurity file. Manipulation of the wepkey1 argument can trigger the overflow...

UTT 512W 安全漏洞

The UTT Progressive 512W is an enterprise-grade wireless router from Atech UTT designed for small and medium-sized businesses SOHO and similarly sized network environments for access scenarios of 30 to 50 users. UTT Progressive 512W suffers from a buffer overflow vulnerability that originates fro...

PT-2025-53418

Name of the Vulnerable Software and Affected Versions UTT 进取 512W versions through 1.7.7-171114 Description A buffer overflow issue exists in UTT 进取 512W. The issue is related to the strcpy function within the /goform/formConfigNoticeConfig file. Manipulation of the timestart argument can trigger...

CVE-2025-14992

A security vulnerability has been detected in Tenda AC18 15.03.05.05. The impacted element is the function strcpy of the file /goform/GetParentControlInfo of the component HTTP Request Handler. The manipulation of the argument mac leads to stack-based buffer overflow. Remote exploitation of the...

CVE-2025-14992 Tenda AC18 HTTP Request GetParentControlInfo strcpy stack-based overflow

A security vulnerability has been detected in Tenda AC18 15.03.05.05. The impacted element is the function strcpy of the file /goform/GetParentControlInfo of the component HTTP Request Handler. The manipulation of the argument mac leads to stack-based buffer overflow. Remote exploitation of the...

CVE-2025-14992

CVE-2025-14992 affects Tenda AC18 firmware 15.03.05.05. The vulnerability is a stack-based overflow in the HTTP Request Handler’s GetParentControlInfo, caused by unsafe handling of the mac argument in strcpy. Remote exploitation is possible and exploits have been publicly disclosed. Public source...

Stack-Buffer-Overflow-x86

Stack-Based Buffer Overflow: From Bug to Code Execution I...

PT-2025-53535

Уязвимость функции strcpy микропрограммного обеспечения маршрутизаторов Tenda AC18 связана с выходом операции за границы буфера в памяти при обработке аргумента mac. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, выполнить произвольный код или вызвать отказ в...

PT-2025-52585

Name of the Vulnerable Software and Affected Versions Tenda AC18 version 15.03.05.05 Description A stack-based buffer overflow exists in the HTTP Request Handler component of Tenda AC18 version 15.03.05.05. The issue is located in the strcpy function within the file /goform/GetParentControlInfo...

CVE-2025-14535

A vulnerability was identified in UTT 进取 512W up to 3.1.7.7-171114. Affected is the function strcpy of the file /goform/formConfigFastDirectionW. The manipulation of the argument ssid leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be...

CVE-2025-14535

A vulnerability was identified in UTT 进取 512W up to 3.1.7.7-171114. Affected is the function strcpy of the file /goform/formConfigFastDirectionW. The manipulation of the argument ssid leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be...

CVE-2025-14535 UTT 进取 512W formConfigFastDirectionW strcpy buffer overflow

A vulnerability was identified in UTT 进取 512W up to 3.1.7.7-171114. Affected is the function strcpy of the file /goform/formConfigFastDirectionW. The manipulation of the argument ssid leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be...

CVE-2025-14534

A vulnerability was determined in UTT 进取 512W up to 3.1.7.7-171114. This impacts the function strcpy of the file /goform/formNatStaticMap of the component Endpoint. Executing manipulation of the argument NatBind can lead to buffer overflow. The attack can be launched remotely. The exploit has bee...

CVE-2025-14534 UTT 进取 512W Endpoint formNatStaticMap strcpy buffer overflow

A vulnerability was determined in UTT 进取 512W up to 3.1.7.7-171114. This impacts the function strcpy of the file /goform/formNatStaticMap of the component Endpoint. Executing manipulation of the argument NatBind can lead to buffer overflow. The attack can be launched remotely. The exploit has bee...

PT-2025-50696

Name of the Vulnerable Software and Affected Versions UTT 进取 512W versions through 3.1.7.7-171114 Description A buffer overflow issue exists in UTT 进取 512W. The strcpy function within the /goform/formConfigFastDirectionW file is affected when handling the ssid argument. This allows for remote...

UTT 512W 安全漏洞

The UTT Progressive 512W is an enterprise-grade wireless router from Atech UTT designed for small and medium-sized businesses SOHO and similarly sized network environments for access scenarios of 30 to 50 users. UTT Progressive 512W has a buffer overflow vulnerability, the vulnerability stems fro...

UTT 512W 安全漏洞

The UTT Progressive 512W is an enterprise-grade wireless router from Atech UTT designed for small and medium-sized businesses SOHO and similarly sized network environments for access scenarios of 30 to 50 users. UTT Progressive 512W has a buffer overflow vulnerability that originates from the...

PT-2025-50692

Name of the Vulnerable Software and Affected Versions UTT 进取 512W versions prior to 3.1.7.7-171114 Description A buffer overflow issue exists in the Endpoint component of UTT 进取 512W. The issue is related to the strcpy function within the /goform/formNatStaticMap file. Manipulation of the NatBind...

curl: Stack Buffer Overflow in cURL wolfSSL Backend (lib/vtls/wolfssl.c)

Summary: A stack-based buffer overflow exists in the wsslstrerror function of cURL's wolfSSL TLS backend. The function uses an unsafe strcpy call, relying solely on a DEBUGASSERT macro for boundary checking. This macro is disabled in production release builds -DNDEBUG, allowing memory corruption...

CVE-2025-14139

A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. Impacted is the function strcpy of the file /goform/formConfigDnsFilterGlobal. Such manipulation of the argument timeRangeName leads to buffer overflow. The exploit has been disclosed publicly and may be used. The vendor was...