CVE-2025-7085

A vulnerability was found in Belkin F9K1122 1.00.33. It has been rated as critical. This issue affects the function formiNICWpsStart of the file /goform/formiNICWpsStart of the component webs. The manipulation of the argument pinCode leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Configurations

No configuration.

History

07 Jul 2025, 16:15

Type Values Removed Values Added
Summary
  • (es) Se encontró una vulnerabilidad en Belkin F9K1122 1.00.33. Se ha clasificado como crítica. Este problema afecta a la función formiNICWpsStart del archivo /goform/formiNICWpsStart del componente webs. La manipulación del argumento pinCode provoca un desbordamiento del búfer basado en la pila. El ataque puede ejecutarse en remoto. Se ha hecho público el exploit y puede que sea utilizado. Se contactó al proveedor con antelación sobre esta divulgación, pero no respondió.
References () https://github.com/wudipjq/my_vuln/blob/main/Belkin/vuln_5/5.md - () https://github.com/wudipjq/my_vuln/blob/main/Belkin/vuln_5/5.md -

06 Jul 2025, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-07-06 17:15

Updated : 2025-07-07 16:15


NVD link : CVE-2025-7085

Mitre link : CVE-2025-7085

CVE.ORG link : CVE-2025-7085


JSON object : View

Products Affected

No product.

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-121

Stack-based Buffer Overflow