PT-2025-50696 · Unknown · Utt 进取 512W
Maximdevere
·
Published
2025-12-11
·
Updated
2026-01-07
·
CVE-2025-14535
CVSS v2.0
10
Critical
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
UTT 进取 512W versions through 3.1.7.7-171114
Description
A buffer overflow issue exists in UTT 进取 512W. The
strcpy function within the /goform/formConfigFastDirectionW file is affected when handling the ssid argument. This allows for remote exploitation, potentially leading to code execution. A public exploit is available. The vendor was contacted regarding this issue but did not respond.Recommendations
Versions prior to 3.1.7.7-171114 should be updated. As a temporary workaround, consider restricting access to the
/goform/formConfigFastDirectionW file to minimize the risk of exploitation.Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Utt 进取 512W