Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Remote, unauthenticated, no interaction against the exposed web service (AV:N/AC:L/PR:N/UI:N); impact is a crash/DoS so A:H with C:N/I:N, correcting the input vector's C:H.
Primary rating from Vendor (mitre).
CVSS VectorVendor: mitre
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
3DescriptionCVE.org
Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via the gohead/sub_447CAC component
AnalysisAI
Denial of service in the UTT nv518G gateway/router (firmware nv518GV3v3.2.7-210919-161313) allows a remote attacker to crash the device by triggering a buffer overflow in the gohead/sub_447CAC web-server routine. Publicly available exploit code exists (referenced GitHub CVEreport analysis) but it is not listed in CISA KEV; EPSS is low at 0.22% (13th percentile), indicating no observed widespread exploitation. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires network reachability to the device's gohead web-management HTTP service and the ability to send a crafted request to the vulnerable sub_447CAC/FUN_00447048 handler; per CVSS (PR:N/UI:N) no authentication or user interaction is needed. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | Signals are mixed-to-low. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker who can reach the router's web management interface sends a single crafted HTTP request whose oversized field overflows the buffer handled by gohead/sub_447CAC, corrupting memory and crashing the web service or rebooting the device. Because no authentication or user interaction is required and the referenced GitHub project publishes an analysis/POC, the crash can be reproduced and scripted for repeated disruption of the gateway. |
| Remediation | No vendor-released patch version is identified in the available data, so the primary action is to check the UTT download center (https://utt.com.cn/downloadcenter.php?filetypeid=3&model=518G&lang=zhcn) for a firmware build newer than v3.2.7-210919-161313 and apply it once published. … Detailed patch versions, workarounds, and compensating controls in full report. |
Recommended ActionAI
Within 24 hours: Conduct complete asset inventory of all UTT nv518G gateway/router devices; verify affected firmware versions (nv518GV3v3.2.7-210919-161313 and earlier); document network placement and criticality. …
Sign in for detailed remediation steps and compensating controls.
Threat intelligence, references, and detailed analysis are available after sign-in.
Same weakness CWE-120 – Classic Buffer Overflow
View allSame technique Denial Of Service
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-40864
GHSA-wj3w-v66w-x298