CVE-2026-2067 | UTT 进取 520W 1.7.7-180627 formTimeGroupConfig strcpy year1 buffer overflow

Inserito da Angelo Barbosa | Feb 6, 2026 | CVE

A vulnerability identified as critical has been detected in UTT 进取 520W 1.7.7-180627. This vulnerability affects the function strcpy of the file /goform/formTimeGroupConfig. The manipulation of the argument year1 leads to buffer overflow.

This vulnerability is listed as CVE-2026-2067. The attack may be initiated remotely. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-2067 | UTT 进取 520W 1.7.7-180627 formTimeGroupConfig strcpy year1 buffer overflow

Post correlati

CVE-2024-33681 | Sandor Kovacs Regenerate Post Permalink Plugin up to 1.0.3 on WordPress cross-site request forgery

CVE-2025-0638 | NLnet Labs Routinator improper validation of syntactic correctness of input

CVE-2024-0319 | FireEye HXTool 4.6 redirect_uri

CVE-2024-5163 | TECNO com.transsion.carlcare 5.8.1.4 Setting permission