CVE-2025-15428 | UTT 进取 512W 1.7.7-171114 formRemoteControl strcpy Profile buffer overflow

Inserito da Angelo Barbosa | Gen 1, 2026 | CVE

A vulnerability has been found in UTT 进取 512W 1.7.7-171114 and classified as critical. Affected is the function strcpy of the file /goform/formRemoteControl. This manipulation of the argument Profile causes buffer overflow.

The identification of this vulnerability is CVE-2025-15428. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-15428 | UTT 进取 512W 1.7.7-171114 formRemoteControl strcpy Profile buffer overflow

Post correlati

CVE-2024-57964 | Hitachi HVAC Energy Saving Program uncontrolled search path

CVE-2025-1691 | MongoDB mongosh up to 2.3.8 Control Character injection

CVE-2024-44844 | DrayTek Vigor3900 1.5.1.6 run_command name command injection

CVE-2023-39509 | Bosch Camera command injection