PT-2026-1048 · Unknown · Utt 进取 512W

Lena-Lyy02

Publicado

2025-12-23

Atualizado

2026-01-07

CVE-2025-15429

CVSS v2.0

9.0

Alta

Vetor

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions UTT 进取 512W version 1.7.7-171114

Description A security issue exists in UTT 进取 512W 1.7.7-171114. The strcpy function within the /goform/formConfigCliForEngineerOnly file is susceptible to a buffer overflow when the addCommand argument is manipulated. This allows for remote attacks. The exploit for this issue has been publicly disclosed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119CWE-120

Identificadores relacionados

BDU:2026-00363

CVE-2025-15429

Produtos afetados

Utt 进取 512W

PT-2026-1048 · Unknown · Utt 进取 512W

CVE-2025-15429

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 15