CVE 8.7 HIGH

UTT HiPER 1250GW formTaskEdit_ap strcpy buffer overflow_CVE-2026-7419

April 29, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was identified in UTT HiPER 1250GW up to 3.2.7-210907-180535. This issue affects the function strcpy of the file route/goform/formTaskEdit_ap. The manipulation of the argument Profile leads to buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

AI Analysis

Buffer overflow vulnerability in UTT HiPER 1250GW due to improper use of strcpy function, allowing remote exploitation.

Basic Information

ID CVE-2026-7419

Source VulDB

Published Apr 29, 2026 at 22:15

Affected Product

Vendor UTT

Product HiPER 1250GW

Version 3.2.7-210907-180535

Affected Versions UTT HiPER 1250GW 3.2.7-210907-180535

CWE Classification

CWE-120 CWE-119

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor UTT

Product HiPER 1250GW

Version 3.2.7-210907-180535

References

{
    "lastseen": "",
    "description": "A vulnerability was identified in UTT HiPER 1250GW up to 3.2.7-210907-180535. This issue affects the function strcpy of the file route/goform/formTaskEdit_ap. The manipulation of the argument Profile leads to buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.",
    "published": "2026-04-29T22:15:10.993Z",
    "modified": "2026-04-29T22:15:10.993Z",
    "type": "cve",
    "title": "UTT HiPER 1250GW formTaskEdit_ap strcpy buffer overflow",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/360156\nhttps://vuldb.com/vuln/360156/cti\nhttps://vuldb.com/submit/803994\nhttps://github.com/kirlic123/IOTvulner/blob/main/4035/2/2.md",
    "id": "CVE-2026-7419",
    "bulletinFamily": "",
    "cwe": [
        "CWE-120",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "UTT HiPER 1250GW 3.2.7-210907-180535",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "HiPER 1250GW",
    "version": "3.2.7-210907-180535",
    "vendor": "UTT",
    "ai_description": "Buffer overflow vulnerability in UTT HiPER 1250GW due to improper use of strcpy function, allowing remote exploitation.",
    "ai_severity": "High",
    "ai_vendor": "UTT",
    "ai_product": "HiPER 1250GW",
    "ai_version": "3.2.7-210907-180535",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply