CVE-2026-5611

HIGH

Belkin F9K1015 formCrossBandSwitch stack-based overflow

Title source: cna

Description

A vulnerability was found in Belkin F9K1015 1.00.10. This affects the function formCrossBandSwitch of the file /goform/formCrossBandSwitch. Performing a manipulation of the argument webpage results in stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

References (4)

Scores

CVSS v3 8.8
EPSS 0.0005
EPSS Percentile 14.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119 CWE-121
Status published
Products (1)
Belkin/F9K1015 1.00.10
Published Apr 06, 2026
Tracked Since Apr 06, 2026