PT-2026-1213 · Unknown · Utt 进取 520W

Cymiao

Publicado

2025-12-29

Atualizado

2026-01-10

CVE-2025-15459

CVSS v2.0

9.0

Alta

Vetor

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions UTT 进取 520W version 1.7.7-180627

Description A security issue has been identified in the software. The strcpy function within the /goform/formUser file is susceptible to a buffer overflow when handling the passwd1 argument. This manipulation can be exploited remotely. The exploit for this issue has been made public, and the vendor has not responded to notifications regarding this disclosure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119CWE-120

Identificadores relacionados

BDU:2026-00613

CVE-2025-15459

Produtos afetados

Utt 进取 520W

PT-2026-1213 · Unknown · Utt 进取 520W

CVE-2025-15459

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 15