520W Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:utt:520w_firmware:1.7.7-180627:*:*:*:*:*:*:*
part: o version: 1.7.7-180627 update: *
| Vendor | Utt (2f5a4977-7574-517d-86bd-607fb0d0757c) |
|---|---|
| Product | 520W Firmware (a245c704-f5e3-5d61-bf02-2b40cf4e833a) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-31067 |
vulnerable | 2026-06-03 15:19:26.261110 |
Details available
A remote command execution (RCE) vulnerability in the /goform/formReleaseConnect component of UTT Aggressive 520W v3v1.7.7-180627 allows attackers to execute arbitrary commands via a crafted string.
Published: 2026-04-06T00:00:00.000Z
Updated: 2026-04-06T19:56:28.177Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-31065 |
vulnerable | 2026-06-03 15:19:26.260180 |
Details available
UTT Aggressive 520W v3v1.7.7-180627 was discovered to contain a buffer overflow in the addCommand parameter of the formConfigCliForEngineerOnly function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
Published: 2026-04-06T00:00:00.000Z
Updated: 2026-04-06T19:53:59.553Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-31062 |
vulnerable | 2026-06-03 15:19:26.259199 |
Details available
UTT Aggressive 520W v3v1.7.7-180627 was discovered to contain a buffer overflow in the filename parameter of the formFtpServerDirConfig function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
Published: 2026-04-06T00:00:00.000Z
Updated: 2026-04-06T19:51:52.375Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-31059 |
vulnerable | 2026-06-03 15:19:26.257716 |
Details available
A remote command execution (RCE) vulnerability in the /goform/formDia component of UTT Aggressive HiPER 520W v3v1.7.7-180627 allows attackers to execute arbitrary commands via a crafted string.
Published: 2026-04-06T00:00:00.000Z
Updated: 2026-04-09T20:28:11.231Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-2071 |
vulnerable | 2026-06-03 15:19:23.425375 |
UTT 进取 520W formP2PLimitConfig strcpy buffer overflow
HIGH (8.8)
A vulnerability was found in UTT 进取 520W 1.7.7-180627. The impacted element is the function strcpy of the file /goform/formP2PLimitConfig. Performing a manipulation of the argument except results in buffer overflow. The attack is possible to be carried out remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-02-07T00:32:06.561Z
Updated: 2026-02-23T09:29:00.399Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-2070 |
vulnerable | 2026-06-03 15:19:23.424843 |
UTT 进取 520W formPolicyRouteConf strcpy buffer overflow
HIGH (8.8)
A vulnerability has been found in UTT 进取 520W 1.7.7-180627. The affected element is the function strcpy of the file /goform/formPolicyRouteConf. Such manipulation of the argument GroupName leads to buffer overflow. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-02-06T22:32:06.317Z
Updated: 2026-02-23T09:28:46.538Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-2068 |
vulnerable | 2026-06-03 15:19:23.421556 |
UTT 进取 520W formSyslogConf strcpy buffer overflow
HIGH (8.8)
A vulnerability was detected in UTT 进取 520W 1.7.7-180627. This issue affects the function strcpy of the file /goform/formSyslogConf. The manipulation of the argument ServerIp results in buffer overflow. The attack may be launched remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-02-06T21:32:06.640Z
Updated: 2026-02-23T09:28:19.608Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-2067 |
vulnerable | 2026-06-03 15:19:23.420945 |
UTT 进取 520W formTimeGroupConfig strcpy buffer overflow
HIGH (8.8)
A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. This vulnerability affects the function strcpy of the file /goform/formTimeGroupConfig. The manipulation of the argument year1 leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-02-06T21:02:06.544Z
Updated: 2026-02-23T09:28:07.349Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-2066 |
vulnerable | 2026-06-03 15:19:23.418797 |
UTT 进取 520W formIpGroupConfig strcpy buffer overflow
HIGH (8.8)
A weakness has been identified in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the file /goform/formIpGroupConfig. Executing a manipulation of the argument groupName can lead to buffer overflow. The attack can be launched remotely. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-02-06T20:32:06.795Z
Updated: 2026-02-23T09:27:53.769Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-14141 |
vulnerable | 2026-06-03 14:58:54.639850 |
UTT 进取 520W formArpBindConfig strcpy buffer overflow
HIGH (8.8)
A flaw has been found in UTT 进取 520W 1.7.7-180627. The impacted element is the function strcpy of the file /goform/formArpBindConfig. Executing manipulation of the argument pools can lead to buffer overflow. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2025-12-06T16:02:05.804Z
Updated: 2025-12-08T17:13:34.187Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-14140 |
vulnerable | 2026-06-03 14:58:54.639368 |
UTT 进取 520W websHostFilter strcpy buffer overflow
MEDIUM (6.5)
A vulnerability was detected in UTT 进取 520W 1.7.7-180627. The affected element is the function strcpy of the file /goform/websHostFilter. Performing manipulation of the argument addHostFilter results in buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2025-12-06T15:32:05.782Z
Updated: 2025-12-08T17:13:42.719Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-14139 |
vulnerable | 2026-06-03 14:58:54.638045 |
UTT 进取 520W formConfigDnsFilterGlobal strcpy buffer overflow
MEDIUM (5.7)
A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. Impacted is the function strcpy of the file /goform/formConfigDnsFilterGlobal. Such manipulation of the argument timeRangeName leads to buffer overflow. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2025-12-06T15:02:06.024Z
Updated: 2025-12-08T17:13:50.565Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.