CVE 8.7 HIGH

UTT HiPER 1200GW Web Management setSysAdm strcpy buffer overflow_CVE-2026-9627

May 26, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A security flaw has been discovered in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the function strcpy of the file /goform/setSysAdm of the component Web Management Interface. The manipulation of the argument sysAdmUser/sysAdmPass results in buffer overflow. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks.

AI Analysis

Buffer overflow vulnerability in UTT HiPER 1200GW Web Management Interface via strcpy function

Basic Information

ID CVE-2026-9627

Source VulDB

Published May 27, 2026 at 00:45

Affected Product

Vendor UTT

Product HiPER 1200GW

Version 2.5.3-170306

Affected Versions UTT HiPER 1200GW 2.5.3-170306

CWE Classification

CWE-120 CWE-119

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor UTT

Product HiPER 1200GW

Version 2.5.3-170306

References

{
    "lastseen": "",
    "description": "A security flaw has been discovered in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the function strcpy of the file /goform/setSysAdm of the component Web Management Interface. The manipulation of the argument sysAdmUser/sysAdmPass results in buffer overflow. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks.",
    "published": "2026-05-27T00:45:12.157Z",
    "modified": "2026-05-27T00:45:12.157Z",
    "type": "cve",
    "title": "UTT HiPER 1200GW Web Management setSysAdm strcpy buffer overflow",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/365683\nhttps://vuldb.com/vuln/365683/cti\nhttps://vuldb.com/submit/818374\nhttps://github.com/zhouguobing-maker/cve/blob/main/9.md",
    "id": "CVE-2026-9627",
    "bulletinFamily": "",
    "cwe": [
        "CWE-120",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "UTT HiPER 1200GW 2.5.3-170306",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "HiPER 1200GW",
    "version": "2.5.3-170306",
    "vendor": "UTT",
    "ai_description": "Buffer overflow vulnerability in UTT HiPER 1200GW Web Management Interface via strcpy function",
    "ai_severity": "High",
    "ai_vendor": "UTT",
    "ai_product": "HiPER 1200GW",
    "ai_version": "2.5.3-170306",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply