CVE-2025-6733 – UTT HiPER 840G API Buffer Overflow Vulnerability

June 26, 2025

CVE ID : CVE-2025-6733

Published : June 26, 2025, 11:15 p.m. | 1 hour, 59 minutes ago

Description : A vulnerability was found in UTT HiPER 840G up to 3.1.1-190328. It has been declared as critical. This vulnerability affects the function sub_416928 of the file /goform/formConfigDnsFilterGlobal of the component API. The manipulation of the argument GroupName leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3699 – Mitsubishi Electric Corporation G-Series Missing Authentication Bypass Vulnerability

Next Article CVE-2025-6734 – UTT HiPER 840G API Buffer Overflow Vulnerability

Highlights

CVE-2025-49131 – FastGPT Sandbox Syscall Escalation Vulnerability

June 9, 2025

CVE ID : CVE-2025-49131

Published : June 9, 2025, 1:15 p.m. | 2 hours, 25 minutes ago

Description : FastGPT is an open-source project that provides a platform for building, deploying, and operating AI-driven workflows and conversational agents. The Sandbox container (fastgpt-sandbox) is a specialized, isolated environment used by FastGPT to safely execute user-submitted or dynamically generated code in isolation. The sandbox before version 4.9.11 has insufficient isolation and inadequate restrictions on code execution by allowing overly permissive syscalls, which allows attackers to escape the intended sandbox boundaries. Attackers could exploit this to read and overwrite arbitrary files and bypass Python module import restrictions. This is patched in version 4.9.11 by restricting the allowed system calls to a safer subset and additional descriptive error messaging.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

The coming AI smartphone: Redefining personal tech

Modern React animation libraries: Real examples for engaging UIs

How Debian 13’s little improvements add up to the distro’s surprisingly big leap forward

Why xAI is giving you ‘limited’ free access to Grok 4

How Apple may revamp Siri to a voice assistant I’d actually use (and ditch Gemini for)

I jump-started a bus from the 1930s with this power bank – here’s the verdict

Laravel’s UsePolicy Attribute: Explicit Authorization Control

Laravel’s UsePolicy Attribute: Explicit Authorization Control

The Laravel Way to Build AI Agents That Actually Work

The Laravel Way to Build AI Agents That Actually Work

Microsoft sued over killing support for Windows 10

Microsoft sued over killing support for Windows 10

Grok 4 rolled out for free-tier users worldwide, with some limits

Firefox AI slammed for hogging CPU and draining battery

CVE-2025-6733 – UTT HiPER 840G API Buffer Overflow Vulnerability

WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately

BadCam Attack Turns Trusted Linux Webcams into Stealthy USB Weapons

The Intersection of Agile and Accessibility – Accessibility Testing in Continuous Integration

CVE-2025-43005 – SAP GUI for Windows Insecure Credential Storage Vulnerability

This week in AI dev tools: Gemini API Batch Mode, Amazon SageMaker AI updates, and more (July 11, 2025)

Laravel Service Container: What Beginners Need to Know

CVE-2025-49131 – FastGPT Sandbox Syscall Escalation Vulnerability

Check for CitrixBleed 2 exploitation even if you patched quickly! (CVE-2025-5777)

CVE-2025-6645 – PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability

CVE-2025-45388 – Wagtail CMS Stored XSS

CVE-2025-6733 – UTT HiPER 840G API Buffer Overflow Vulnerability

Related Posts