CVE-2026-2135 | UTT HiPER 810 1.7.4-141218 /goform/formPdbUpConfig sub_43F020 policyNames command injection

Inserito da Angelo Barbosa | Feb 6, 2026 | CVE

A vulnerability was found in UTT HiPER 810 1.7.4-141218. It has been classified as critical. The impacted element is the function sub_43F020 of the file /goform/formPdbUpConfig. Performing a manipulation of the argument policyNames results in command injection.

This vulnerability is cataloged as CVE-2026-2135. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2026-2135 | UTT HiPER 810 1.7.4-141218 /goform/formPdbUpConfig sub_43F020 policyNames command injection

Post correlati

CVE-2025-39386 | Hospital Management System Plugin up to 47.0 on WordPress sql injection

CVE-2024-37391 | ProtonVPN up to 3.2.9 on Windows Setup/setup.iss Privilege Escalation

CVE-2024-45847 | MindsDV up to 24.7.4.0 Integration Engine neutralization of directives

CVE-2025-4685 | Gutentor Plugin up to 3.4.8 on WordPress Widget cross site scripting