CVE-2026-9627
HighSummary
A security flaw has been discovered in UTT HiPER 1200GW up to version 2.5.3-170306, affecting the strcpy function in the /goform/setSysAdm file of the Web Management Interface. Manipulation of the sysAdmUser/sysAdmPass arguments results in a buffer overflow.
Risk Assessment
An attacker can remotely exploit this vulnerability, posing a serious security threat to the system. A publicly available exploit may be used to carry out attacks.
Recommendation
It is recommended to update the UTT HiPER 1200GW system to the latest version to eliminate this vulnerability. Additionally, monitor systems for unauthorized access attempts.
Original NVD description (English source)
A security flaw has been discovered in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the function strcpy of the file /goform/setSysAdm of the component Web Management Interface. The manipulation of the argument sysAdmUser/sysAdmPass results in buffer overflow. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks.

