Description
UTT Aggressive HiPER 810G v3v1.7.7-171114 was discovered to contain a buffer overflow in the timestart parameter of the ConfigAdvideo function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
Published: 2026-04-06
Score: 4.5 Medium
EPSS: n/a
KEV: No
Impact: Denial of Service
Action: Assess Impact
AI Analysis

Impact

A buffer overflow exists in the timestart parameter of the ConfigAdvideo function, enabling an attacker to crash the application by sending specially crafted input. The flaw is a classic buffer overflow, which is mitigated by properly bounds‑checking input, and does not provide remote code execution or privilege escalation.

Affected Systems

The vulnerability affects the UTT Aggressive HiPER 810G firmware version 3v1.7.7-171114. No other vendor or product versions are identified.

Risk and Exploitability

The EPSS score is not available, and the issue is not listed in the CISA KEV catalog, so its exploitation likelihood is uncertain. The attack vector is inferred to be local or remote depending on how the ConfigAdvideo interface is exposed; an attacker must be able to send crafted configuration data to trigger the overflow. The risk is primarily availability loss and potential repeated crashes, which could be critical in environments where continuous service is required.

Generated by OpenCVE AI on April 6, 2026 at 17:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Contact the vendor to confirm patch status or release schedule.
  • If no patch is available, restrict or disable access to the ConfigAdvideo function, preventing external configuration changes that expose the timestart parameter.
  • Implement network segmentation or firewall rules to limit traffic that can reach the device’s configuration interface.
  • Monitor device logs and performance for crash events related to ConfigAdvideo and respond promptly.
  • Apply the vendor’s firmware update as soon as a patch is released.

Generated by OpenCVE AI on April 6, 2026 at 17:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 07 Apr 2026 00:00:00 +0000

Type Values Removed Values Added
Title Buffer Overflow in ConfigAdvideo Function Causes Denial of Service
First Time appeared Utt
Utt hiper 810g
Weaknesses CWE-119
CWE-120
Vendors & Products Utt
Utt hiper 810g
Metrics cvssV3_1

{'score': 4.5, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 06 Apr 2026 15:30:00 +0000

Type Values Removed Values Added
Description UTT Aggressive HiPER 810G v3v1.7.7-171114 was discovered to contain a buffer overflow in the timestart parameter of the ConfigAdvideo function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
References

Subscriptions

Utt Hiper 810g
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-04-06T19:50:51.659Z

Reserved: 2026-03-09T00:00:00.000Z

Link: CVE-2026-31061

cve-icon Vulnrichment

Updated: 2026-04-06T19:50:47.423Z

cve-icon NVD

Status : Received

Published: 2026-04-06T15:17:08.487

Modified: 2026-04-06T20:16:22.547

Link: CVE-2026-31061

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-06T21:47:55Z

Weaknesses