Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

UTT — Vulnerabilities & Security Advisories 90

Browse all 90 CVE security advisories affecting UTT. AI-powered Chinese analysis, POCs, and references for each vulnerability.

UTT functions as a unified threat management platform, integrating firewall, intrusion prevention, and web application security into a single appliance for enterprise network protection. With ninety recorded Common Vulnerabilities and Exposures, the software has historically suffered from critical remote code execution flaws, allowing attackers to gain unauthorized system access without authentication. Cross-site scripting vulnerabilities have also been prevalent, enabling session hijacking and data exfiltration through malicious scripts injected into administrative interfaces. Additionally, privilege escalation bugs have permitted low-level users to attain root-level control, compromising the integrity of the entire security infrastructure. While the vendor has implemented various patches to address these weaknesses, the high volume of disclosed issues suggests persistent challenges in secure coding practices. These recurring defects highlight significant risks for organizations relying on UTT for perimeter defense, necessitating rigorous patch management and continuous monitoring to mitigate potential exploitation of known attack vectors.

Top products by UTT: 进取 520W HiPER 810G 进取 512W HiPER 840G HiPER 1250GW 进取 750W 1200GW HiPER 810 HiPER 1200GW 1250GW 进取 518G 进取 521G HiPER 520 750W HiPER 2620G
CVE IDTitleCVSSSeverityPublished
CVE-2025-14535 UTT 进取 512W formConfigFastDirectionW strcpy buffer overflow — 进取 512WCWE-120 9.8 Critical2025-12-11
CVE-2025-14534 UTT 进取 512W Endpoint formNatStaticMap strcpy buffer overflow — 进取 512WCWE-120 9.8 Critical2025-12-11
CVE-2025-14191 UTT 进取 512W formP2PLimitConfig strcpy buffer overflow — 进取 512WCWE-120 8.8 High2025-12-07
CVE-2025-14141 UTT 进取 520W formArpBindConfig strcpy buffer overflow — 进取 520WCWE-120 8.8 High2025-12-06
CVE-2025-14140 UTT 进取 520W websHostFilter strcpy buffer overflow — 进取 520WCWE-120 6.5 Medium2025-12-06
CVE-2025-14139 UTT 进取 520W formConfigDnsFilterGlobal strcpy buffer overflow — 进取 520WCWE-120 5.7 Medium2025-12-06
CVE-2025-13442 UTT 进取 750W formPdbUpConfig system command injection — 进取 750WCWE-77 7.3 High2025-11-20
CVE-2025-11653 UTT HiPER 2620G fNTP strcpy buffer overflow — HiPER 2620GCWE-120 8.8 High2025-10-13
CVE-2025-11652 UTT 进取 518G formTaskEdit_ap buffer overflow — 进取 518GCWE-120 8.8 High2025-10-13
CVE-2025-11651 UTT 进取 518G formRemoteControl sub_4247AC buffer overflow — 进取 518GCWE-120 8.8 High2025-10-12
CVE-2025-11355 UTT 1250GW aspChangeChannel strcpy buffer overflow — 1250GWCWE-120 8.8 High2025-10-07
CVE-2025-11323 UTT 1250GW formUserStatusRemark strcpy buffer overflow — 1250GWCWE-120 8.8 High2025-10-06
CVE-2025-11305 UTT HiPER 840G formTaskEdit strcpy buffer overflow — HiPER 840GCWE-120 8.8 High2025-10-05
CVE-2025-10953 UTT 1200GW/1250GW formApMail buffer overflow — 1200GWCWE-120 8.8 High2025-09-25
CVE-2025-10757 UTT 1200GW formConfigDnsFilterGlobal buffer overflow — 1200GWCWE-120 8.8 High2025-09-20
CVE-2025-10756 UTT HiPER 840G getOneApConfTempEntry buffer overflow — HiPER 840GCWE-120 8.8 High2025-09-20
CVE-2025-10172 UTT 750W formPictureUrl buffer overflow — 750WCWE-120 8.8 High2025-09-09
CVE-2025-10171 UTT 1250GW formConfigApConfTemp sub_453DC buffer overflow — 1250GWCWE-120 8.8 High2025-09-09
CVE-2025-10170 UTT 1200GW formApLbConfig sub_4B48F8 buffer overflow — 1200GWCWE-120 8.8 High2025-09-09
CVE-2025-10169 UTT 1200GW ConfigWirelessBase buffer overflow — 1200GWCWE-120 8.8 High2025-09-09
CVE-2025-7571 UTT HiPER 840G aspApBasicConfigUrcp buffer overflow — HiPER 840GCWE-120 8.8 High2025-07-14
CVE-2025-7570 UTT HiPER 840G aspRemoteApConfTempSend buffer overflow — HiPER 840GCWE-120 8.8 High2025-07-14
CVE-2025-7118 UTT HiPER 840G formPictureUrl buffer overflow — HiPER 840GCWE-120 8.8 High2025-07-07
CVE-2025-7117 UTT HiPER 840G websWhiteList buffer overflow — HiPER 840GCWE-120 8.8 High2025-07-07
CVE-2025-7116 UTT 进取 750W Fast_wireless_conf buffer overflow — 进取 750WCWE-120 8.8 High2025-07-07
CVE-2025-6734 UTT HiPER 840G API formP2PLimitConfig sub_484E40 buffer overflow — HiPER 840GCWE-120 8.8 High2025-06-26
CVE-2025-6733 UTT HiPER 840G API formConfigDnsFilterGlobal sub_416928 buffer overflow — HiPER 840GCWE-120 8.8 High2025-06-26
CVE-2025-6732 UTT HiPER 840G API setSysAdm strcpy buffer overflow — HiPER 840GCWE-120 8.8 High2025-06-26
CVE-2025-6098 UTT 进取 750W API setSysAdm strcpy buffer overflow — 进取 750WCWE-120 9.8 Critical2025-06-16
CVE-2025-6097 UTT 进取 750W Administrator Password setSysAdm formDefineManagement unverified password change — 进取 750WCWE-620 5.3 Medium2025-06-16

This page lists every published CVE security advisory associated with UTT. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.