CVE-2025-15089

Name of the Vulnerable Software and Affected Versions UTT 进取 512W versions through 1.7.7-171114

Description A buffer overflow issue exists in UTT 进取 512W. The issue is related to the strcpy function within the /goform/APSecurity file. Manipulation of the wepkey1 argument can trigger the overflow. The issue is remotely exploitable and the exploit has been publicly disclosed.

Recommendations Versions prior to 1.7.7-171114 are vulnerable. As a temporary workaround, consider restricting access to the /goform/APSecurity file to minimize the risk of exploitation. Avoid using the wepkey1 argument in the /goform/APSecurity endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.