Skip to main content

840g Firmware EUVD-2025-21306

| CVE-2025-7570 HIGH
Buffer Overflow (CWE-119)
2025-07-14 cna@vuldb.com
Buffer Overflow 840g Firmware
8.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
EUVD ID Assigned
Mar 16, 2026 - 09:43 euvd
EUVD-2025-21306
Analysis Generated
Mar 16, 2026 - 09:43 vuln.today
PoC Detected
Jan 08, 2026 - 19:42 vuln.today
Public exploit code
CVE Published
Jul 14, 2025 - 04:15 nvd
HIGH 8.8

DescriptionCVE.org

A vulnerability was found in UTT HiPER 840G up to 3.1.1-190328. It has been rated as critical. Affected by this issue is some unknown functionality of the file /goform/aspRemoteApConfTempSend. The manipulation of the argument remoteSrcTemp leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

CVE-2025-7570 is a critical remote buffer overflow vulnerability in UTT HiPER 840G devices up to version 3.1.1-190328, affecting the /goform/aspRemoteApConfTempSend endpoint via the remoteSrcTemp parameter. An authenticated remote attacker can exploit this to achieve arbitrary code execution with high impact on confidentiality, integrity, and availability. A public exploit exists and the vendor has not responded to early disclosure, indicating active exploitation risk.

Technical ContextAI

This vulnerability is a classic buffer overflow (CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer) in a web application endpoint. The UTT HiPER 840G is a network access control device/gateway product that exposes a vulnerable form handler at /goform/aspRemoteApConfTempSend. The remoteSrcTemp parameter fails to implement proper bounds checking before writing to a fixed-size buffer, allowing attackers to overwrite adjacent memory. The affected product family (CPE approximation: cpe:2.3:a:utt:hiper:*:*:*:*:*:*:*:* with versions <=3.1.1-190328) suggests this is embedded network management firmware. The vulnerability resides in server-side form processing logic, likely written in C/C++ given the buffer overflow nature.

RemediationAI

{'type': 'patch', 'status': 'unavailable', 'notes': 'Vendor (UTT Technologies) has not responded to early disclosure and no official patch is available. No vendor advisory exists.'} {'type': 'workaround', 'recommendation': 'Restrict network access to /goform/aspRemoteApConfTempSend endpoint via firewall or WAF rules. Implement access controls limiting exposure to trusted administrative networks only. Monitor for authentication attempts to this endpoint.'} {'type': 'mitigation', 'recommendation': 'Disable remote management interfaces if not required. Segment HiPER 840G devices on isolated management networks. Require VPN/bastion host access to device web interface. Monitor process and memory activity on affected devices for signs of exploitation.'} {'type': 'long_term', 'recommendation': 'Evaluate replacement with actively-maintained network access control solutions from vendors with responsive security practices. Contact UTT Technologies directly to demand security updates or consider end-of-life planning for this product line.'}

Share

EUVD-2025-21306 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy