Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.4
Belkin F9K1015 Router: Remote Code Execution Through Webpage Argument
CVE-2026-5612
Summary
A security flaw exists in the Belkin F9K1015 router's web interface. An attacker can potentially inject malicious code by manipulating a specific argument in the router's settings. Belkin has not responded to a notification about this issue, and a public exploit is available, so you may want to consider updating your router's firmware or replacing it with a different model.
Original title
A vulnerability was determined in Belkin F9K1015 1.00.10. This vulnerability affects the function formWlEncrypt of the file /goform/formWlEncrypt. Executing a manipulation of the argument webpage c...
Original description
A vulnerability was determined in Belkin F9K1015 1.00.10. This vulnerability affects the function formWlEncrypt of the file /goform/formWlEncrypt. Executing a manipulation of the argument webpage can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.
nvd CVSS2.0
9.0
nvd CVSS3.1
8.8
nvd CVSS4.0
7.4
Vulnerability type
CWE-119
Buffer Overflow
CWE-121
Stack-based Buffer Overflow
Published: 6 Apr 2026 · Updated: 6 Apr 2026 · First seen: 6 Apr 2026