CVE-2025-6732 | UTT HiPER 840G up to 3.1.1-190328 API /goform/setSysAdm strcpy passwd1 buffer overflow

Inserito da Angelo Barbosa | Giu 26, 2025 | CVE

A vulnerability was found in UTT HiPER 840G up to 3.1.1-190328. It has been classified as critical. This affects the function strcpy of the file /goform/setSysAdm of the component API. The manipulation of the argument passwd1 leads to buffer overflow.

This vulnerability is uniquely identified as CVE-2025-6732. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-6732 | UTT HiPER 840G up to 3.1.1-190328 API /goform/setSysAdm strcpy passwd1 buffer overflow

Post correlati

CVE-2024-9049 | Beaver Builder Plugin up to 2.8.3.6 on WordPress Button Group Module cross site scripting

CVE-2024-7200 | SourceCodester Complaints Report Management System 1.0 ajax.php name cross site scripting

CVE-2023-6230 | Canon Satera LBP670C up to 03.07 Address Book Password Process out-of-bounds write

CVE-2024-47290 | Huawei HarmonyOS/EMUI USB Service Module null pointer dereference