Primary

Context

UTT HiPER 810G Buffer Overflow Vulnerability in formPolicyRouteConf

Vulnerability

A buffer overflow vulnerability has been identified in the UTT HiPER 810G router, in versions through 1.7.7-171114. The issue arises in the formPolicyRouteConf function, where the GroupName argument can be manipulated to cause a buffer overflow. This vulnerability can be exploited remotely, leading to potential buffer overflow attacks and denial-of-service conditions.

Impact

Exploitation of this vulnerability causes a buffer overflow, which can lead to arbitrary code execution or a denial-of-service condition.

Reproduction

The vulnerability can be reproduced by sending a POST request to the /goform/formPolicyRouteConf endpoint. The request must include a crafted GroupName parameter that exceeds the buffer size, causing a buffer overflow. This can be done by using a long string of characters in the GroupName field, along with the required headers and authorization.

Added: Feb 23, 2026, 4:40 PM

Updated: Feb 23, 2026, 6:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

8.0

remediation

0.0

relevance

3.1

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

8.0

remediation

0.0

relevance

3.1

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

UTT HiPER 810G Buffer Overflow Vulnerability in formPolicyRouteConf

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating