CVE-2026-5612
Received Received - Intake
Stack-Based Buffer Overflow in Belkin F9K1015 Remote Form Handler

Publication date: 2026-04-06

Last updated on: 2026-04-30

Assigner: VulDB

Description
A vulnerability was determined in Belkin F9K1015 1.00.10. This vulnerability affects the function formWlEncrypt of the file /goform/formWlEncrypt. Executing a manipulation of the argument webpage can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-06
Last Modified
2026-04-30
Generated
2026-06-16
AI Q&A
2026-04-06
EPSS Evaluated
2026-06-15
NVD
CVE-2026-5612
EUVD
EUVD-2026-19153
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
belkin f9k1015_firmware 1.00.10
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-119 The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
CWE-121 A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Belkin F9K1015 firmware version 1.00.10, specifically in the formWlEncrypt function of the web interface.

The function reads a user-supplied parameter named "webpage" and assigns it to a variable that is then passed to the strcpy function without any bounds checking.

Because strcpy does not check the length of the input, an attacker can send a crafted HTTP POST request with an excessively long "webpage" parameter to the /goform/formWlEncrypt endpoint, causing a stack-based buffer overflow.

This overflow can lead to denial of service or remote code execution on the device.

Compliance Impact

The provided information does not specify how this vulnerability impacts compliance with common standards and regulations such as GDPR or HIPAA.

Impact Analysis

Exploiting this vulnerability can allow an attacker to perform a denial of service (DoS) attack, making the device unavailable.

More critically, it can enable remote code execution, allowing the attacker to run arbitrary code on the affected device remotely.

This could lead to full compromise of the device, potentially allowing unauthorized access to network resources or further attacks within the network.

Detection Guidance

This vulnerability can be detected by sending a crafted HTTP POST request to the /goform/formWlEncrypt endpoint of the Belkin F9K1015 device and observing its response or behavior.

A detection method involves sending a POST request with an excessively long "webpage" parameter to test for a stack-based buffer overflow.

An example command using curl to test this is:

  • curl -X POST http://[device_ip]/goform/formWlEncrypt -d "webpage=$(python3 -c 'print("a"*1000)')"

Replace [device_ip] with the IP address of the target Belkin F9K1015 device. If the device crashes, becomes unresponsive, or behaves abnormally, it indicates the presence of the vulnerability.

Mitigation Strategies

Immediate mitigation steps include restricting access to the vulnerable device's web interface to trusted networks only, such as by using firewall rules or network segmentation.

Avoid exposing the device's management interface to the internet or untrusted networks.

Monitor the device for unusual behavior or crashes that may indicate exploitation attempts.

Since the vendor has not responded or provided a patch, consider replacing the device or disabling the vulnerable service if possible.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-5612. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart