CVE-2026-3698
Published: 08 March 2026
Summary
CVE-2026-3698 is a high-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability in Utt 810G Firmware. Its CVSS base score is 8.8 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 28.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly addresses the buffer overflow vulnerability by requiring timely remediation through firmware patching for the affected UTT HiPER 810G versions.
Prevents exploitation by enforcing validation of NTP form inputs to block malformed data that triggers the strcpy buffer overflow.
Mitigates successful exploitation of the buffer overflow via memory safeguards like address space layout randomization and non-executable stacks.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Buffer overflow in authenticated web endpoint (/goform/NTP) on public-facing network device enables remote exploitation of a public-facing application (T1190) and allows low-privilege access to achieve high-impact code execution, directly facilitating exploitation for privilege escalation (T1068).
NVD Description
A vulnerability was identified in UTT HiPER 810G up to 1.7.7-171114. This affects the function strcpy of the file /goform/NTP. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be…
more
used.
Deeper analysisAI
CVE-2026-3698 is a buffer overflow vulnerability (CWE-119, CWE-120) identified in the UTT HiPER 810G device, affecting versions up to 1.7.7-171114. The flaw occurs in the strcpy function within the /goform/NTP file, where improper input handling allows manipulation leading to the overflow. Published on 2026-03-08, it carries a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).
Attackers with low privileges (PR:L) can exploit this remotely over the network (AV:N) with low complexity (AC:L) and no user interaction (UI:N), potentially achieving high impacts on confidentiality, integrity, and availability (C:H/I:H/A:H). A public exploit is available and might be used in attacks.
Advisories and further details are available in references including https://github.com/7wkajk/CVE-VUL/blob/main/3.md, https://vuldb.com/?ctiid.349644, https://vuldb.com/?id.349644, and https://vuldb.com/?submit.765748.
Details
- CWE(s)