ГлавнаяУязвимости → CVE-2025-15092
8.8высокая

CVE-2025-15092

Описание

A vulnerability was identified in UTT 进取 512W up to 1.7.7-171114. Impacted is the function strcpy of the file /goform/ConfigExceptMSN. Such manipulation of the argument remark leads to buffer overflow. It is possible to launch the attack remotely. The exploit is publicly available and might be used.

Затрагиваемое ПО
Utt 512w firmwareUtt 512w
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/cymiao1978/cve/blob/main/new/17.mdhttps://github.com/cymiao1978/cve/blob/main/new/17.md#pochttps://vuldb.com/?ctiid.338421https://vuldb.com/?id.338421https://vuldb.com/?submit.708351https://github.com/cymiao1978/cve/blob/main/new/17.md#poc