CVE-2026-7512
Buffer Overflow in UTT HiPER 1200GW Firmware
Publication date: 2026-05-01
Last updated on: 2026-05-01
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| utt | hiper_1200gw | to 2.5.3-1703 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-120 | The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a flaw found in the UTT HiPER 1200GW device up to version 2.5.3-1703. It exists in the strcpy function within the file /goform/formUser. An attacker can remotely manipulate this function to cause a buffer overflow.
A buffer overflow occurs when more data is written to a buffer than it can hold, potentially allowing an attacker to execute arbitrary code or cause the device to behave unexpectedly.
The exploit for this vulnerability has been published and can be used by attackers.
How can this vulnerability impact me? :
This vulnerability can have serious impacts because it allows remote attackers to cause a buffer overflow on the affected device.
Potential impacts include unauthorized code execution, which can lead to full compromise of the device, disruption of service, or unauthorized access to sensitive information.
Since the exploit is publicly available, the risk of attack is higher.