CVE-2026-14721
Received Received - Intake

Stack-Based Buffer Overflow in UTT HiPER 1250GW

Vulnerability report for CVE-2026-14721, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-05

Last updated on: 2026-07-05

Assigner: VulDB

Description

A vulnerability has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. This affects an unknown function of the file /goform/ConfigWirelessBase_5g of the component Web Endpoint. The manipulation of the argument ssid leads to stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-05
Last Modified
2026-07-05
Generated
2026-07-05
AI Q&A
2026-07-05
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
utt hiper_1250gw to 3.2.7-210907-180535 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-121 A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
CWE-119 The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

The CVE-2026-14721 vulnerability affects the UTT HiPER 1250GW router, specifically firmware versions up to and including v3.2.7-210907-180535.

It is a stack-based buffer overflow vulnerability in the router's wireless configuration API, accessible via the /goform/ConfigWirelessBase_5g endpoint.

An attacker can exploit this by sending a crafted POST request with an excessively long SSID parameter, which triggers a buffer overflow due to the lack of proper boundary checks in the strcpy function.

Detection Guidance

This vulnerability can be detected by monitoring network traffic for suspicious POST requests to the /goform/ConfigWirelessBase_5g endpoint on UTT HiPER 1250GW routers running vulnerable firmware versions.

Specifically, detection involves identifying POST requests containing an excessively long ssid parameter, which is used to trigger the stack-based buffer overflow.

A practical approach is to capture and analyze HTTP POST requests to the endpoint using tools like tcpdump or Wireshark.

  • Use tcpdump to capture traffic on the router's interface filtering for HTTP POST requests: tcpdump -i <interface> -A 'tcp port 80 and (((ip[2:2] - ((ip[0]&0xf)<<2)) - ((tcp[12]&0xf0)>>2)) != 0)'
  • Use curl or similar tools to test the endpoint by sending crafted POST requests with varying ssid lengths to observe abnormal behavior.
  • Check router logs for any crashes or abnormal resets that may indicate exploitation attempts.
Mitigation Strategies

Immediate mitigation steps include restricting access to the vulnerable /goform/ConfigWirelessBase_5g endpoint to trusted users only, such as limiting access via firewall rules or network segmentation.

Avoid exposing the router's web management interface to untrusted networks or the internet.

Monitor the device for unusual behavior such as crashes or reboots that may indicate exploitation attempts.

Since no patches have been provided yet, consider disabling wireless configuration changes remotely if possible.

Contact the vendor at [email protected] for any updates or patches and keep firmware updated once a fix is released.

Impact Analysis

Exploitation of this vulnerability can lead to a denial of service (DoS) attack on the affected router.

Because the attack can be carried out remotely, an attacker could disrupt network connectivity or potentially cause the device to crash or behave unpredictably.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-14721. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart