CVE-2026-2847 – UTT HiPER 520 Web Management formReleaseConnect sub_44EFB4 os command injection

CVE ID : CVE-2026-2847

Published : Feb. 20, 2026, 4:22 p.m. | 39 minutes ago

Description : A vulnerability was detected in UTT HiPER 520 1.7.7-160105. Affected is the function sub_44EFB4 of the file /goform/formReleaseConnect of the component Web Management Interface. The manipulation of the argument Isp_Name results in os command injection. The attack can be launched remotely. The exploit is now public and may be used.

Severity: 8.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…