CVE-2026-11517

Vulnerability

A buffer overflow vulnerability exists in UTT HiPER 2610G devices up to version 3.0.0-171107. The vulnerability resides in the strcpy function within the /goform/formConfigDnsFilterGlobal file, which can be triggered by manipulating the GroupName argument. This issue affects devices with firmware versions up to and including 3.0.0-171107.

Exploitation

An attacker can exploit this vulnerability remotely without authentication. The attack involves sending a specially crafted request to the /goform/formConfigDnsFilterGlobal endpoint, manipulating the GroupName parameter to exceed the buffer's allocated space, thereby causing a buffer overflow.

Impact

Successful exploitation of this buffer overflow vulnerability can lead to remote code execution on the affected device. This could allow an attacker to gain control over the device, potentially leading to further network compromise or data theft.

Mitigation

There is currently no publicly disclosed patch or fixed version available for this vulnerability. Users are advised to monitor vendor advisories for updates. The exploit has been publicly disclosed and may be actively utilized [1].