CVE-2026-4862

Name of the Vulnerable Software and Affected Versions UTT HiPER 1250GW versions up to 3.2.7-210907-180535

Description A security issue has been identified in UTT HiPER 1250GW. A buffer overflow can occur due to manipulation of the GroupName argument within the strcpy function located in the /goform/formConfigDnsFilterGlobal file of the Parameter Handler component. This issue can be exploited remotely. The exploit for this issue has been publicly disclosed.

Recommendations UTT HiPER 1250GW versions up to 3.2.7-210907-180535: Update to a newer version that addresses this vulnerability. As a temporary workaround, consider restricting access to the Parameter Handler component to minimize the risk of exploitation.