zxq0408/Vul202601

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-31065 ↗	Apr 6, 2026Monday, 6 April 2026, 15:17	4.5 MEDIUM	—
UTT Aggressive 520W v3v1.7.7-180627 was discovered to contain a buffer overflow in the addCommand parameter of the formConfigCliForEngineerOnly function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVE-2026-31066 ↗	Apr 6, 2026Monday, 6 April 2026, 15:17	4.5 MEDIUM	—
UTT Aggressive HiPER 810G v3v1.7.7-171114 was discovered to contain a buffer overflow in the selDateType parameter of the formTaskEdit function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVE-2026-31067 ↗	Apr 6, 2026Monday, 6 April 2026, 15:17	6.8 MEDIUM	—
A remote command execution (RCE) vulnerability in the /goform/formReleaseConnect component of UTT Aggressive 520W v3v1.7.7-180627 allows attackers to execute arbitrary commands via a crafted string.
CVE-2026-31058 ↗	Apr 6, 2026Monday, 6 April 2026, 15:17	4.5 MEDIUM	—
UTT Aggressive HiPER 1200GW v2.5.3-170306 was discovered to contain a buffer overflow in the timeRangeName parameter of the formConfigDnsFilterGlobal function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVE-2026-31059 ↗	Apr 6, 2026Monday, 6 April 2026, 15:17	9.8 CRITICAL	—
A remote command execution (RCE) vulnerability in the /goform/formDia component of UTT Aggressive HiPER 520W v3v1.7.7-180627 allows attackers to execute arbitrary commands via a crafted string.
CVE-2026-31060 ↗	Apr 6, 2026Monday, 6 April 2026, 15:17	4.5 MEDIUM	—
UTT Aggressive HiPER 810G v3v1.7.7-171114 was discovered to contain a buffer overflow in the notes parameter of the formGroupConfig function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVE-2026-31061 ↗	Apr 6, 2026Monday, 6 April 2026, 15:17	4.5 MEDIUM	—
UTT Aggressive HiPER 810G v3v1.7.7-171114 was discovered to contain a buffer overflow in the timestart parameter of the ConfigAdvideo function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVE-2026-31062 ↗	Apr 6, 2026Monday, 6 April 2026, 15:17	4.5 MEDIUM	—
UTT Aggressive 520W v3v1.7.7-180627 was discovered to contain a buffer overflow in the filename parameter of the formFtpServerDirConfig function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVE-2026-31063 ↗	Apr 6, 2026Monday, 6 April 2026, 15:17	4.5 MEDIUM	—
UTT Aggressive HiPER 1200GW v2.5.3-170306 was discovered to contain a buffer overflow in the pools parameter of the formArpBindConfig function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.