Vulnerability Description
A vulnerability was detected in UTT HiPER 810G up to 1.7.7-171114. Affected by this vulnerability is the function strcpy of the file /goform/formFireWall of the component Management Interface. The manipulation of the argument GroupName results in buffer overflow. The attack can be launched remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Utt | 810G Firmware | <= 1.7.7-171114 |
| Utt | 810G | 3.0 |
Related Weaknesses (CWE)
References
- https://github.com/alc9700jmo/CVE/issues/22ExploitIssue TrackingMitigation
- https://github.com/alc9700jmo/CVE/issues/22#issue-3851242657ExploitIssue TrackingMitigation
- https://vuldb.com/?ctiid.344653Permissions RequiredVDB Entry
- https://vuldb.com/?id.344653Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.746502Third Party AdvisoryVDB Entry
FAQ
What is CVE-2026-2086?
CVE-2026-2086 is a vulnerability with a CVSS score of 8.8 (HIGH). A vulnerability was detected in UTT HiPER 810G up to 1.7.7-171114. Affected by this vulnerability is the function strcpy of the file /goform/formFireWall of the component Management Interface. The man...
How severe is CVE-2026-2086?
CVE-2026-2086 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-2086?
Check the references section above for vendor advisories and patch information. Affected products include: Utt 810G Firmware, Utt 810G.