CNNVD-202512-4754 Information

CNNVD ID

CNNVD-202512-4754

Related CVE

CVE-2025-15090

• CNNVD Published: 2025-12-25

Description (Chinese)

UTT 512W是中国艾泰（UTT）公司的一款无线路由器。 UTT 512W 1.7.7-171114及之前版本存在安全漏洞，该漏洞源于对文件/goform/formConfigNoticeConfig中函数strcpy的参数timestart的错误操作，可能导致缓冲区溢出攻击。

Description (English)

UTT 512W is a wireless router of the Chinese company UTT. There is a security loophole in UTT 512W 1.7.7-171114 and earlier versions, which is the result of a mishandling of the parameter thimestart for function stcpy in document/goform/formConfignoticeConfig, which could lead to a spill-out of the buffer zone.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

艾泰

Published

2025-12-25

Last Modified

2026-02-24

References

https://github.com/cymiao1978/cve/blob/main/new/15.md#poc https://vuldb.com/?id.338419 https://vuldb.com/?submit.708349 https://vuldb.com/?ctiid.338419 https://access.redhat.com/security/cve/cve-2025-15090