What is the CVSS score of CVE-2025-7571?

CVE-2025-7571 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.3%.

Which versions of 840g Firmware are affected by CVE-2025-7571?

UTT HiPER 840G devices (up to version 3.1.1-190328) contain a critical remote code execution vulnerability with an active public exploit and no vendor patch available.

Is there a public PoC exploit available for CVE-2025-7571?

Yes, a public proof-of-concept exploit is available for CVE-2025-7571. Prioritise patching immediately. EPSS: 0.3%.

How to fix or mitigate CVE-2025-7571?

Within 24 hours: Identify all UTT HiPER 840G devices in your environment and document their versions and network locations; isolate affected devices from production networks if possible. Within 7 days: Implement network-based protections (WAF rules, input validation on /goform/aspApBasicConfigUrcp endpoint, IP whitelisting for administrative access); evaluate replacement or upgrade options with the vendor or alternative solutions. Within 30 days: Complete replacement or upgrade of all affected devices to a patched version once available, or decommission if no remediation path exists.

840g Firmware CVE-2025-7571

EUVD-2025-21305 HIGH

Buffer Overflow (CWE-119)

2025-07-14 cna@vuldb.com

Buffer Overflow 840g Firmware

8.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

8.8 HIGH

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

EUVD ID Assigned

Mar 16, 2026 - 09:43 euvd

EUVD-2025-21305

Analysis Generated

Mar 16, 2026 - 09:43 vuln.today

PoC Detected

Jan 08, 2026 - 19:41 vuln.today

Public exploit code

CVE Published

Jul 14, 2025 - 05:15 nvd

HIGH 8.8

DescriptionCVE.org

A vulnerability classified as critical has been found in UTT HiPER 840G up to 3.1.1-190328. This affects an unknown part of the file /goform/aspApBasicConfigUrcp. The manipulation of the argument Username leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

A critical buffer overflow vulnerability exists in UTT HiPER 840G devices up to version 3.1.1-190328, affecting the /goform/aspApBasicConfigUrcp endpoint's Username parameter. An authenticated remote attacker can exploit this to achieve arbitrary code execution with high confidentiality, integrity, and availability impact. Public proof-of-concept code is available, and the vendor has not responded to early disclosure attempts, indicating no official patch is available.

Technical ContextAI

The vulnerability is a classic buffer overflow (CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer) in a web-based configuration interface of the UTT HiPER 840G wireless device. The vulnerable endpoint /goform/aspApBasicConfigUrcp processes HTTP form submissions and fails to properly validate the length of the Username parameter before copying it into a fixed-size stack or heap buffer. UTT HiPER 840G is a wireless router/access point device commonly deployed in small office and enterprise network environments. The vulnerability exists because input validation and bounds checking are absent or insufficient in the parameter parsing routine, allowing an attacker to overflow the buffer and potentially corrupt adjacent memory structures, overwrite return addresses, or inject arbitrary code into the instruction pointer.

RemediationAI

{'type': 'Primary Remediation', 'action': 'No official patch available from UTT. Organizations should contact UTT directly for patched firmware or migrate to alternative access point solutions from responsive vendors.'} {'type': 'Network-Level Mitigation', 'action': 'Restrict access to the /goform/aspApBasicConfigUrcp endpoint to trusted administrative networks only using firewall rules or ACLs. Block unauthenticated and low-privilege access from untrusted networks.'} {'type': 'Operational Mitigation', 'action': 'Enforce strong administrative credentials on all UTT HiPER 840G devices to reduce likelihood of unauthorized authentication. Disable remote management if not required.'} {'type': 'Detection & Monitoring', 'action': 'Monitor for HTTP requests to /goform/aspApBasicConfigUrcp with unusually long Username parameters (>128 bytes). Alert on any such requests, particularly from non-administrative sources.'} {'type': 'Long-Term Mitigation', 'action': 'Develop plan to decommission or replace UTT HiPER 840G devices in favor of actively maintained equipment from vendors with responsive security practices.'}

CVE-2025-7571 vulnerability details – vuln.today

Back

840g Firmware CVE-2025-7571

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code