CVE-2026-9632

HIGH NVD

CVSS Score 8.8

Severity HIGH

Published May 27, 2026

Vendor unknown

Description

A flaw has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this issue is the function strcpy of the file /goform/formGroupConfig of the component Web Management Interface. Executing a manipulation of the argument Profile can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been published and may be used.

References

https://github.com/luozhibo-sec/cve/blob/main/12.md
https://vuldb.com/submit/818383
https://vuldb.com/vuln/365741
https://vuldb.com/vuln/365741/cti