CVE-2026-3016

Sažetak

A vulnerability was identified in UTT HiPER 810G up to 1.7.7-171114. The affected element is the function strcpy of the file /goform/formP2PLimitConfig. The manipulation of the argument except leads to buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Reference

https://github.com/xhsy0314/CVEReport/blob/main/UTT-2/README.md
https://github.com/xhsy0314/CVEReport/blob/main/UTT-2/README.md#poc
https://vuldb.com/?ctiid.347376
https://vuldb.com/?id.347376
https://vuldb.com/?submit.756249

CVSS

Base:	9.0
Impact:	10.0
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

23-02-2026 - 18:13

Objavljeno

23-02-2026 - 16:29