CVE-2025-10170

Name of the Vulnerable Software and Affected Versions: UTT 1200GW versions prior to 3.0.0-170831

Description: A security issue has been identified in UTT 1200GW. Manipulation of the loadBalanceNameOld argument in the sub 4B48F8 function within the /goform/formApLbConfig file can lead to a buffer overflow. This issue may be exploited remotely. The exploit has been publicly disclosed.

Recommendations: Versions prior to 3.0.0-170831: Update to version 3.0.0-170831 or later. As a temporary workaround, restrict access to the /goform/formApLbConfig file to minimize the risk of exploitation. Avoid using the loadBalanceNameOld parameter in the affected function sub 4B48F8 until the issue is resolved.