CVE 8.7 HIGH

UTT HiPER 2610G formConfigDnsFilterGlobal strcpy buffer overflow_CVE-2026-11517

June 8, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was determined in UTT HiPER 2610G up to 3.0.0-171107. This impacts the function strcpy of the file /goform/formConfigDnsFilterGlobal. Executing a manipulation of the argument GroupName can lead to buffer overflow. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized.

AI Analysis

Buffer overflow vulnerability in UTT HiPER 2610G due to improper handling of the GroupName argument in the strcpy function, allowing remote exploitation.

Basic Information

ID CVE-2026-11517

Source VulDB

Published Jun 8, 2026 at 13:15

Affected Product

Vendor UTT

Product HiPER 2610G

Version 3.0.0-171107

Affected Versions UTT HiPER 2610G 3.0.0-171107

CWE Classification

CWE-120 CWE-119

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor UTT

Product HiPER 2610G

Version 3.0.0-171107

References

{
    "lastseen": "",
    "description": "A vulnerability was determined in UTT HiPER 2610G up to 3.0.0-171107. This impacts the function strcpy of the file /goform/formConfigDnsFilterGlobal. Executing a manipulation of the argument GroupName can lead to buffer overflow. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized.",
    "published": "2026-06-08T13:15:09.750Z",
    "modified": "2026-06-08T13:15:09.750Z",
    "type": "cve",
    "title": "UTT HiPER 2610G formConfigDnsFilterGlobal strcpy buffer overflow",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/369137\nhttps://vuldb.com/vuln/369137/cti\nhttps://vuldb.com/cve/CVE-2026-11517\nhttps://vuldb.com/submit/836278\nhttps://github.com/HungryGoogle/log_attack/tree/main/index3",
    "id": "CVE-2026-11517",
    "bulletinFamily": "",
    "cwe": [
        "CWE-120",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "UTT HiPER 2610G 3.0.0-171107",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "HiPER 2610G",
    "version": "3.0.0-171107",
    "vendor": "UTT",
    "ai_description": "Buffer overflow vulnerability in UTT HiPER 2610G due to improper handling of the GroupName argument in the strcpy function, allowing remote exploitation.",
    "ai_severity": "High",
    "ai_vendor": "UTT",
    "ai_product": "HiPER 2610G",
    "ai_version": "3.0.0-171107",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply