CVE-2025-7094

Belkin F9K1122 webs formBSSetSitesurvey stack-based overflow

CVSS 8.7 HIGHEPSS 0.8%CWE-119 CWE-121

Vexday Risk Score

21Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS 8.7EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

06 jul 2025Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

A vulnerability was found in Belkin F9K1122 1.00.33. It has been rated as critical. Affected by this issue is the function formBSSetSitesurvey of the file /goform/formBSSetSitesurvey of the component webs. The manipulation of the argument submit-url-ok leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Produtos afetados

Belkin · F9K1122

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/wudipjq/my_vuln/blob/main/Belkin/vuln_14/14.md https://github.com/wudipjq/my_vuln/blob/main/Belkin/vuln_14/14.md#poc https://vuldb.com/?ctiid.315008 https://vuldb.com/?id.315008 https://vuldb.com/?submit.603711