CVE Catalog

CVE-2026-9632

High
Published: Translated: NVD NIST

Summary

A flaw has been found in UTT HiPER 1250GW up to version 3.2.7-210907-180535 in the strcpy function of the /goform/formGroupConfig file of the Web Management Interface. Manipulating the Profile argument can lead to stack-based buffer overflow.

Risk Assessment

An attacker can remotely exploit this vulnerability, posing a serious security threat to the system. The publication of the exploit increases the risk of an attack.

Recommendation

It is recommended to update the software to the latest version to eliminate this vulnerability. Additionally, monitor systems for unauthorized access attempts.

Original NVD description (English source)

A flaw has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this issue is the function strcpy of the file /goform/formGroupConfig of the component Web Management Interface. Executing a manipulation of the argument Profile can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been published and may be used.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS