CVE-2026-2188 – UTT 进取 521G formPdbUpConfig sub_446B18 os command injection

CVE ID : CVE-2026-2188

Published : Feb. 8, 2026, 10:15 p.m. | 1 hour, 3 minutes ago

Description : A vulnerability was determined in UTT 进取 521G 3.1.1-190816. The impacted element is the function sub_446B18 of the file /goform/formPdbUpConfig. Executing a manipulation of the argument policyNames can lead to os command injection. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized.

Severity: 8.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…