CVE-2025-15428 | UTT 进取 512W 1.7.7-171114 formRemoteControl strcpy Profile buffer overflow

Inserito da Angelo Barbosa | Gen 1, 2026 | CVE

A vulnerability has been found in UTT 进取 512W 1.7.7-171114 and classified as critical. Affected is the function strcpy of the file /goform/formRemoteControl. This manipulation of the argument Profile causes buffer overflow.

The identification of this vulnerability is CVE-2025-15428. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-15428 | UTT 进取 512W 1.7.7-171114 formRemoteControl strcpy Profile buffer overflow

Post correlati

CVE-2024-12476 | Schneider Electric BMXNOR0200H/BMXNOE0110/BMENOC0311/BMENOC0321 xml external entity reference (SEVD-2025-014-04)

CVE-2024-8867 | Perfex CRM 3.1.6 Parameter Clients.php message cross site scripting

CVE-2025-1587 | SourceCodester Telecom Billing Management System 1.0 Add New Record main.cpp name buffer overflow

CVE-2025-9231 | OpenSSL up to 3.2.5/3.3.4/3.4.2/3.5.3 on 64-bit ARM SM2 covert timing channel