How severe is CVE-2025-10757?

CVE-2025-10757 has a CVSS v3 score of 8.8 (HIGH).

CVE-2025-10757

Name: 1200gw
Author: utt

8.8HIGH

A weakness has been identified in UTT 1200GW up to 3.0.0-170831. The affected element is an unknown function of the file /goform/formConfigDnsFilterGlobal. This manipulation of the argument GroupName

Publicado: 9/21/2025Actualizado: 1/8/2026

Descripción

A weakness has been identified in UTT 1200GW up to 3.0.0-170831. The affected element is an unknown function of the file /goform/formConfigDnsFilterGlobal. This manipulation of the argument GroupName causes buffer overflow. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Análisis IAImpulsado por IA

Productos Afectados

utt1200gw_firmware

utt1200gw

Referencias

https://github.com/cymiao1978/cve/blob/main/6.md
ExploitThird Party Advisory
https://github.com/cymiao1978/cve/blob/main/6.md#poc
Exploit
https://vuldb.com/?ctiid.325112
Permissions RequiredVDB Entry
https://vuldb.com/?id.325112
Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.645681
Third Party AdvisoryVDB Entry