CVE-2026-4566

HIGH

Belkin F9K1122 formWISP5G stack-based overflow

Title source: cna

Description

A flaw has been found in Belkin F9K1122 1.00.33. The affected element is the function formWISP5G of the file /goform/formWISP5G. Executing a manipulation of the argument webpage can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

References (5)

[Vdb Entry, Technical Description] https://vuldb.com/?id.352403

[Signature, Permissions Required] https://vuldb.com/?ctiid.352403

[Third Party Advisory] https://vuldb.com/?submit.775132

[Related] https://github.com/Litengzheng/vul_db/blob/main/Belkin/vul_151/README.md

[Exploit] https://github.com/Litengzheng/vul_db/blob/main/Belkin/vul_151/README.md#proof-of-concept-poc

View Exploit ZIP pw:eip

Scores

CVSS v3 8.8

EPSS 0.0004

EPSS Percentile 13.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-119 CWE-121

Status published

Products (1)

Belkin/F9K1122 < 1.00.33

Published Mar 23, 2026

Tracked Since Mar 23, 2026