Zero Day MonitorZDM

← Back to list

4.5

CVE-2026-31058EXPLOITED

n/a · n/a

CVE-2026-31058: UTT Aggressive HiPER 1200GW v2.5.3-170306 was discovered to contain a buffer overflow in the timeRangeName parameter of

Description

UTT Aggressive HiPER 1200GW v2.5.3-170306 was discovered to contain a buffer overflow in the timeRangeName parameter of the formConfigDnsFilterGlobal function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a

References

https://github.com/zxq0408/Vul202601/blob/main/2.md

Related News (1 articles)

Tier C

VulDB6h ago

CVE-2026-31058 | UTT HiPER 1200GW 2.5.3-170306 Parameter formConfigDnsFilterGlobal timeRangeName buffer overflow

→ No new info (linked only)

CVSS 3.14.5 MEDIUM

VectorCVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CISA KEV❌ No

Actively exploited✅ Yes

PublishedApr 6, 2026

Last enriched6h agov2

Trending Score42

Source articles1

Independent1

Info Completeness6/14

Missing: cvss, epss, cwe, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-31150EXP

CVE-2026-31150: Incorrect access control in Kaleris YMS v7.2.2.1 allows authenticated attackers with only the shipping/receiving role to

CRITICALCVE-2025-57835EXP

CVE-2025-57835: An issue was discovered in RRC in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 21

CRITICALCVE-2026-31151EXP

CVE-2026-31151: An issue in the login mechanism of Kaleris YMS v7.2.2.1 allows attackers to bypass login verification to access the appl

MEDIUMCVE-2026-31067EXP

CVE-2026-31067: A remote command execution (RCE) vulnerability in the /goform/formReleaseConnect component of UTT Aggressive 520W v3v1.7

HIGHCVE-2026-30613EXP

CVE-2026-30613: An information disclosure vulnerability exists in AZIOT 1 Node Smart Switch (16amp)- WiFi/Bluetooth Enabled Software Ver

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 6, 2026

Discovered by ZDM

Apr 6, 2026

Updated: description, affectedVersions, severity, activelyExploited

Apr 6, 2026

Actively Exploited

Apr 6, 2026

Version History

v2

Last enriched 6h ago

v2Tier C6h ago

Updated vendor and product information, changed severity to CRITICAL, and noted that the vulnerability is actively exploited.

descriptionaffectedVersionsseverityactivelyExploited

via VulDB

v18h ago

Initial creation