CVE-2025-7084

A vulnerability was found in Belkin F9K1122 1.00.33. It has been declared as critical. This vulnerability affects the function formWpsStart of the file /goform/formWpsStart of the component webs. The manipulation of the argument pinCode leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Configurations

No configuration.

History

07 Jul 2025, 16:15

Type Values Removed Values Added
References () https://github.com/wudipjq/my_vuln/blob/main/Belkin/vuln_4/4.md - () https://github.com/wudipjq/my_vuln/blob/main/Belkin/vuln_4/4.md -
Summary
  • (es) Se encontró una vulnerabilidad en Belkin F9K1122 1.00.33. Se ha declarado crítica. Esta vulnerabilidad afecta a la función formWpsStart del archivo /goform/formWpsStart del componente webs. La manipulación del argumento pinCode provoca un desbordamiento del búfer basado en la pila. El ataque puede ejecutarse en remoto. Se ha hecho público el exploit y puede que sea utilizado. Se contactó al proveedor con antelación sobre esta divulgación, pero no respondió.

06 Jul 2025, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-07-06 16:15

Updated : 2025-07-07 16:15


NVD link : CVE-2025-7084

Mitre link : CVE-2025-7084

CVE.ORG link : CVE-2025-7084


JSON object : View

Products Affected

No product.

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-121

Stack-based Buffer Overflow