Primary

Context

UTT 进取 518G Buffer Overflow Vulnerability in formTaskEdit_ap Endpoint

Vulnerability

A buffer overflow vulnerability has been identified in the UTT 进取 518G router, affecting firmware versions through V3v3.2.7-210919-161313. The vulnerability arises from an unknown processing issue in the file '/goform/formTaskEdit_ap', where the 'txtMin2' argument can be manipulated to cause a buffer overflow. This vulnerability can be exploited remotely, leading to a denial-of-service condition or arbitrary command execution.

Impact

Exploitation of this vulnerability causes a buffer overflow, which can lead to a denial-of-service condition or arbitrary command execution on the affected device.

Reproduction

To reproduce this vulnerability, send a POST request to the '/goform/formTaskEdit_ap' endpoint. Include a 'txtMin2' parameter with a payload that exceeds the buffer size, such as a string of repeated characters. The request must be authenticated using Digest authorization with valid credentials.

Added: Oct 13, 2025, 1:21 AM

Updated: Oct 13, 2025, 1:21 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.1

remediation

0.0

relevance

0.7

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.1

remediation

0.0

relevance

0.7

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

UTT 进取 518G Buffer Overflow Vulnerability in formTaskEdit_ap Endpoint

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating