A weakness has been identified in UTT 1200GW up to 3.0.0-170831. The affected element is an unknown function of the file /goform/formConfigDnsFilterGlobal. This manipulation of the argument GroupName causes buffer overflow. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
References
| Link | Resource |
|---|---|
| https://github.com/cymiao1978/cve/blob/main/6.md | Exploit Third Party Advisory |
| https://github.com/cymiao1978/cve/blob/main/6.md#poc | Exploit |
| https://vuldb.com/?ctiid.325112 | Permissions Required VDB Entry |
| https://vuldb.com/?id.325112 | Third Party Advisory VDB Entry |
| https://vuldb.com/?submit.645681 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
| AND |
|
History
08 Jan 2026, 16:14
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/cymiao1978/cve/blob/main/6.md - Exploit, Third Party Advisory | |
| References | () https://github.com/cymiao1978/cve/blob/main/6.md#poc - Exploit | |
| References | () https://vuldb.com/?ctiid.325112 - Permissions Required, VDB Entry | |
| References | () https://vuldb.com/?id.325112 - Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?submit.645681 - Third Party Advisory, VDB Entry | |
| CPE | cpe:2.3:h:utt:1200gw:-:*:*:*:*:*:*:* cpe:2.3:o:utt:1200gw_firmware:*:*:*:*:*:*:*:* |
|
| First Time |
Utt
Utt 1200gw Firmware Utt 1200gw |
21 Sep 2025, 00:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-09-21 00:15
Updated : 2026-01-08 16:14
NVD link : CVE-2025-10757
Mitre link : CVE-2025-10757
CVE.ORG link : CVE-2025-10757
JSON object : View
Products Affected
utt
- 1200gw_firmware
- 1200gw