HIGHCVE-2026-2935Published 2026-02-22Modified 2026-02-25CNA VulDB

CVE-2026-2935: UTT HiPER 810G ConfigExceptMSN strcpy buffer overflow

A weakness has been identified in UTT HiPER 810G up to 1.7.7-171114. This issue affects the function strcpy of the file /goform/ConfigExceptMSN. Executing a manipulation of the argument remark can lead to buffer overflow. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks.

CVSS v4.0: 8.6
Severity: HIGH
Fixed in: —
Affected Products: 1

Affected packages

UTT / HiPER 810G
1.7.7-171114

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

References

VDB-347297 | UTT HiPER 810G ConfigExceptMSN strcpy buffer overflow
VDB-347297 | CTI Indicators (IOB, IOC, IOA)
Submit #755297 | UTT (AiTai) HiPER 810G ≤ v3v1.7.7-171114 Buffer Overflow
github.com

Metrics