CVE-2014-2962

NUCLEI

Belkin N150 F9k1009 Firmware < 1.00.07 - Path Traversal

Title source: rule

Description

Absolute path traversal vulnerability in the webproc cgi module on the Belkin N150 F9K1009 v1 router with firmware before 1.00.08 allows remote attackers to read arbitrary files via a full pathname in the getpage parameter.

Exploits (1)

exploitdb WORKING POC

by Rahul Pratap Singh · textwebappshardware

https://www.exploit-db.com/exploits/38488

View Code ZIP pw:eip

Nuclei Templates (1)

Belkin N150 Router 1.00.08/1.00.09 - Path Traversal

HIGHby daffainfo

References (3)

[Patch, Vendor Advisory] http://www.belkin.com/us/support-article?articleNum=109400

[Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/774788

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/38488/

Scores

EPSS 0.8889

EPSS Percentile 99.5%

Details

CWE

CWE-22

Status published

Products (3)

belkin/n150_f9k1009 v1

belkin/n150_f9k1009_firmware 1.00.01

belkin/n150_f9k1009_firmware < 1.00.07

Published Jun 19, 2014

Tracked Since Feb 18, 2026