CVE 8.7 HIGH

UTT HiPER 1250GW NTP strcpy buffer overflow_CVE-2026-7418

April 29, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function strcpy of the file route/goform/NTP. Executing a manipulation of the argument Profile can lead to buffer overflow. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.

AI Analysis

Buffer overflow vulnerability in UTT HiPER 1250GW via NTP strcpy function, allowing remote exploitation

Basic Information

ID CVE-2026-7418

Source VulDB

Published Apr 29, 2026 at 22:00

Affected Product

Vendor UTT

Product HiPER 1250GW

Version 3.2.7-210907-180535

Affected Versions UTT HiPER 1250GW 3.2.7-210907-180535

CWE Classification

CWE-120 CWE-119

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor UTT

Product HiPER 1250GW

Version 3.2.7-210907-180535

References

{
    "lastseen": "",
    "description": "A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function strcpy of the file route/goform/NTP. Executing a manipulation of the argument Profile can lead to buffer overflow. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.",
    "published": "2026-04-29T22:00:13.518Z",
    "modified": "2026-04-29T22:00:13.518Z",
    "type": "cve",
    "title": "UTT HiPER 1250GW NTP strcpy buffer overflow",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/360155\nhttps://vuldb.com/vuln/360155/cti\nhttps://vuldb.com/submit/803993\nhttps://github.com/kirlic123/IOTvulner/blob/main/4035/1/1.md",
    "id": "CVE-2026-7418",
    "bulletinFamily": "",
    "cwe": [
        "CWE-120",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "UTT HiPER 1250GW 3.2.7-210907-180535",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "HiPER 1250GW",
    "version": "3.2.7-210907-180535",
    "vendor": "UTT",
    "ai_description": "Buffer overflow vulnerability in UTT HiPER 1250GW via NTP strcpy function, allowing remote exploitation",
    "ai_severity": "High",
    "ai_vendor": "UTT",
    "ai_product": "HiPER 1250GW",
    "ai_version": "3.2.7-210907-180535",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply