How severe is CVE-2026-0841?

CVE-2026-0841 has a CVSS v3 score of 8.8 (HIGH).

CVE-2026-0841

Name: 520w
Author: utt

8.8HIGH

A vulnerability was detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is the function strcpy of the file /goform/formPictureUrl. The manipulation of the argument importpictureurl results in

Published: 1/11/2026Updated: 1/13/2026

Description

A vulnerability was detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is the function strcpy of the file /goform/formPictureUrl. The manipulation of the argument importpictureurl results in buffer overflow. It is possible to launch the attack remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AI AnalysisPowered by AI

Affected Products

utt520w_firmware

utt520w

3.0

References

https://github.com/GUOTINGTING2297/cve/blob/main/1234/31.md
ExploitThird Party Advisory
https://vuldb.com/?ctiid.340441
Permissions RequiredVDB Entry
https://vuldb.com/?id.340441
Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.729030
Third Party AdvisoryVDB Entry