The vulnerability of the formiNICWpsStart() function (/goform/formiNICWpsStar) in the wireless range extender software from Belkin (model F9K1122) allows a intruder to trigger a service failure.

The vulnerability of the formiNICWpsStart function /goform/formiNICWpsStar of the Belkin F9K1122 Wi-Fi range extender software is related to reading data beyond the buffer boundaries in memory when processing the pinCode parameter. Exploiting this vulnerability could allow a malicious actor to...

CVE-2025-7085

A vulnerability was found in Belkin F9K1122 1.00.33. It has been rated as critical. This issue affects the function formiNICWpsStart of the file /goform/formiNICWpsStart of the component webs. The manipulation of the argument pinCode leads to stack-based buffer overflow. The attack may be initiat...

CVE-2025-7085 Belkin F9K1122 webs formiNICWpsStart stack-based overflow

A vulnerability was found in Belkin F9K1122 1.00.33. It has been rated as critical. This issue affects the function formiNICWpsStart of the file /goform/formiNICWpsStart of the component webs. The manipulation of the argument pinCode leads to stack-based buffer overflow. The attack may be initiat...

Server side request forgery (ssrf)

Belkin N300 Dual-Band Wi-Fi Range Extender with firmware before 1.04.10 allows remote authenticated users to execute arbitrary commands via the 1 subdir parameter in a formUSBStorage request; pinCode parameter in a 2 formWpsStart or 3 formiNICWpsStart request; 4 wpsenroleepin parameter in a...

Belkin N300 Dual-Band Wi-Fi Range Extender formiNICWpsStart Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Belkin N300 Dual-Band Wi-Fi Range Extender. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of formiNICWpsStart requests. It is possible to...