ByteOS Network

NVD Vulnerability Details :

CVE-2026-9627

Received

Source-cna@vuldb.com

Published At-27 May, 2026 | 02:16

Updated At-27 May, 2026 | 02:16

A security flaw has been discovered in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the function strcpy of the file /goform/setSysAdm of the component Web Management Interface. The manipulation of the argument sysAdmUser/sysAdmPass results in buffer overflow. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	7.4	HIGH	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary	3.1	8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Secondary	2.0	9.0	HIGH	AV:N/AC:L/Au:S/C:C/I:C/A:C

Type: Secondary

Version: 4.0

Base score: 7.4

Base severity: HIGH

Vector:

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Type: Primary

Version: 3.1

Base score: 8.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Secondary

Version: 2.0

Base score: 9.0

Base severity: HIGH

Vector:

AV:N/AC:L/Au:S/C:C/I:C/A:C

Weaknesses

CWE ID	Type	Source
CWE-119	Primary	cna@vuldb.com
CWE-120	Primary	cna@vuldb.com

CWE ID: CWE-119

Type: Primary

Source: cna@vuldb.com

CWE ID: CWE-120

Type: Primary

Source: cna@vuldb.com

References

Hyperlink	Source	Resource
https://github.com/zhouguobing-maker/cve/blob/main/9.md	cna@vuldb.com	N/A
https://vuldb.com/submit/818374	cna@vuldb.com	N/A
https://vuldb.com/vuln/365683	cna@vuldb.com	N/A
https://vuldb.com/vuln/365683/cti	cna@vuldb.com	N/A