CVE-2025-15431 | UTT 进取 512W 1.7.7-171114 formFtpServerDirConfig strcpy filename buffer overflow

Inserito da Angelo Barbosa | Gen 1, 2026 | CVE

A vulnerability was found in UTT 进取 512W 1.7.7-171114. It has been declared as critical. This affects the function strcpy of the file /goform/formFtpServerDirConfig. Executing manipulation of the argument filename can lead to buffer overflow.

This vulnerability is tracked as CVE-2025-15431. The attack can be launched remotely. Moreover, an exploit is present.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-15431 | UTT 进取 512W 1.7.7-171114 formFtpServerDirConfig strcpy filename buffer overflow

Post correlati

CVE-2024-0489 | code-projects Fighting Cock Information System 1.0 edit_chicken.php ref sql injection

CVE-2024-2948 | Favorites Plugin up to 2.3.3 on WordPress Shortcode cross site scripting

CVE-2025-8077 | SUSE neuvector up to 5.4.5 Authentication Token default password (GHSA-8pxw-9c75-6w56)

CVE-2023-25734 | Mozilla Firefox up to 109 URL File Remote Code Execution (Bug 1809923)