Skip to main content

UTT nv518G EUVDEUVD-2026-40864

| CVE-2026-52193 HIGH
Classic Buffer Overflow (CWE-120)
2026-06-30 cve@mitre.org GHSA-wj3w-v66w-x298
7.5
CVSS 3.1 · Vendor: mitre
Share

Severity by source

Vendor (mitre) PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
vuln.today AI
7.5 HIGH

Remote, unauthenticated, no interaction against the exposed web service (AV:N/AC:L/PR:N/UI:N); impact is a crash/DoS so A:H with C:N/I:N, correcting the input vector's C:H.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (mitre).

CVSS VectorVendor: mitre

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

3
Analysis Generated
Jul 01, 2026 - 21:32 vuln.today
CVSS changed
Jul 01, 2026 - 19:22 NVD
7.5 (None) 7.5 (HIGH)
CVE Published
Jun 30, 2026 - 23:17 cve.org
UNKNOWN (no severity yet)

DescriptionCVE.org

Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via the gohead/sub_447CAC component

AnalysisAI

Denial of service in the UTT nv518G gateway/router (firmware nv518GV3v3.2.7-210919-161313) allows a remote attacker to crash the device by triggering a buffer overflow in the gohead/sub_447CAC web-server routine. Publicly available exploit code exists (referenced GitHub CVEreport analysis) but it is not listed in CISA KEV; EPSS is low at 0.22% (13th percentile), indicating no observed widespread exploitation. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Reach device web management interface
Delivery
Send crafted HTTP request to gohead handler
Exploit
Overflow buffer in sub_447CAC
Execution
Corrupt memory / crash service
Impact
Gateway denial of service

Vulnerability AssessmentAI

Exploitation Exploitation requires network reachability to the device's gohead web-management HTTP service and the ability to send a crafted request to the vulnerable sub_447CAC/FUN_00447048 handler; per CVSS (PR:N/UI:N) no authentication or user interaction is needed. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Signals are mixed-to-low. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who can reach the router's web management interface sends a single crafted HTTP request whose oversized field overflows the buffer handled by gohead/sub_447CAC, corrupting memory and crashing the web service or rebooting the device. Because no authentication or user interaction is required and the referenced GitHub project publishes an analysis/POC, the crash can be reproduced and scripted for repeated disruption of the gateway.
Remediation No vendor-released patch version is identified in the available data, so the primary action is to check the UTT download center (https://utt.com.cn/downloadcenter.php?filetypeid=3&model=518G&lang=zhcn) for a firmware build newer than v3.2.7-210919-161313 and apply it once published. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Conduct complete asset inventory of all UTT nv518G gateway/router devices; verify affected firmware versions (nv518GV3v3.2.7-210919-161313 and earlier); document network placement and criticality. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-40864 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy