PatchSiren cyber security CVE debrief
CVE-2026-11516 UTT CVE debrief
CVE-2026-11516 is a buffer overflow vulnerability in UTT HiPER 2610G up to 3.0.0-171107. The vulnerability affects the strcpy function in /goform/formNatStaticMap, which can be exploited by manipulating the NatBinds argument. The vulnerability has a CVSS score of 2 and is considered LOW severity. The exploit has been made public and could be used.
- Vendor
- UTT
- Product
- HiPER 2610G
- CVSS
- LOW 2
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-08
- Original CVE updated
- 2026-06-09
- Advisory published
- 2026-06-08
- Advisory updated
- 2026-06-09
Who should care
Administrators and users of UTT HiPER 2610G up to 3.0.0-171107 should be aware of this vulnerability and take necessary actions to mitigate it.
Technical summary
The vulnerability is caused by a buffer overflow in the strcpy function in /goform/formNatStaticMap. The vulnerability can be exploited by manipulating the NatBinds argument.
Defensive priority
LOW
Recommended defensive actions
- Update to a version of UTT HiPER 2610G that is not vulnerable.
- Limit access to the /goform/formNatStaticMap endpoint.
- Monitor for suspicious activity on the affected system.
Evidence notes
The vulnerability was found in UTT HiPER 2610G up to 3.0.0-171107.
Official resources
-
CVE-2026-11516 CVE record
CVE.org
-
CVE-2026-11516 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
- Source reference
- Source reference
- Source reference
- Source reference
-
Source reference
134c704f-9b21-4f2e-91b3-4a467353bcc0
CVE-2026-11516 was published on 2026-06-08T15:16:43.017Z and modified on 2026-06-09T01:34:33.987Z.