CVE-2025-10756

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions UTT HiPER 840G versions up to 3.1.1-190328

Description A security flaw exists in UTT HiPER 840G up to version 3.1.1-190328. The issue involves a buffer overflow in an unknown function within the /goform/getOneApConfTempEntry file. The tempName argument can be manipulated to trigger the overflow, allowing for remote exploitation. The exploit has been publicly released. The vendor was notified but did not respond.

Recommendations Versions prior to 3.1.1-190328 should be updated. As a temporary workaround, consider restricting access to the /goform/getOneApConfTempEntry file to minimize the risk of exploitation.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-120

Related Identifiers

BDU:2026-02108

CVE-2025-10756

Affected Products

Utt Hiper 840G

CVE-2025-10756

Weakness Enumeration

Related Identifiers

Affected Products

References · 11