Skip to main content

UTT nv518G CVE-2026-52190

| EUVDEUVD-2026-41225 HIGH
Stack-based Buffer Overflow (CWE-121)
2026-07-01 cve@mitre.org GHSA-2fgx-9w4g-59gc
7.5
CVSS 3.1 · Vendor: mitre
Share

Severity by source

Vendor (mitre) PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
vuln.today AI
7.5 HIGH

Network-reachable gohead service, no auth or interaction, low-complexity crash yields availability-only impact (A:H) with no confidentiality or integrity effect.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (mitre).

CVSS VectorVendor: mitre

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

3
Analysis Generated
Jul 02, 2026 - 13:52 vuln.today
CVSS changed
Jul 02, 2026 - 13:52 NVD
7.5 (HIGH)
CVE Published
Jul 01, 2026 - 22:16 cve.org
UNKNOWN (no severity yet)

DescriptionCVE.org

Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via the gohead/sub_448384 component

AnalysisAI

Denial of service in the UTT nv518G gateway/router (firmware nv518GV3v3.2.7-210919-161313) lets a remote attacker crash the device by sending crafted input to the gohead/sub_448384 (FUN_00448384) handler, triggering a stack-based buffer overflow. The CVSS 3.1 vector marks it network-reachable and unauthenticated with high availability impact but no confidentiality or integrity effect. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Reach exposed gohead management service
Delivery
Send crafted oversized HTTP request
Exploit
Overflow stack buffer in FUN_00448384
Execution
Corrupt stack / crash service
Impact
Device denial of service

Vulnerability AssessmentAI

Exploitation Exploitation requires network reachability to the UTT nv518G's 'gohead' web/management service and delivery of malformed input to the gohead/sub_448384 (FUN_00448384) request-handling path; per the CVSS vector (AV:N/AC:L/PR:N/UI:N) no authentication and no user interaction are needed. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 base score is 7.5 (High) with vector AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H - network-reachable, low complexity, no privileges or user interaction, availability-only impact. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who can reach the nv518G's gohead management service sends a single crafted HTTP request with an oversized field that overflows the stack buffer in FUN_00448384, causing the service or device to crash and drop network connectivity. Because a public CVE report with proof-of-concept details exists and the CVSS vector requires no authentication, user interaction, or elevated privileges, the attack is low-effort and repeatable against an exposed device.
Remediation No vendor-released patch version is identified at time of analysis; the vendor advisory data only points to UTT's general download center (https://utt.com.cn/downloadcenter.php?filetypeid=3&model=518G&lang=zhcn), so administrators should check there for a firmware build newer than nv518GV3v3.2.7-210919-161313 and apply it once available. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

24 hours: Inventory all UTT nv518G routers running firmware nv518GV3v3.2.7-210919-161313 or earlier; assess network exposure and document business-critical dependencies. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-52190 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy