A vulnerability was determined in Belkin F9K1015 1.00.10. An unknown function of the file /goform/formSetWanStatic is impacted. Executing manipulation of the argument m_wan_ipaddr can lead to command injection. The attack may be performed remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted about this disclosure but did not respond.
CVE-2025-11298
🟡 Medium
CVE-2025-11298: Command Injection in Belkin F9K1015 Router
A vulnerability in Belkin F9K1015 Router allows remote command injection via manipulation of 'm_wan_ipaddr'. Vendor did not respond to disclosure.
CVE ID
CVE-2025-11298
CVSS Score
6.3
Vendor
unknown
Published
Oct 05
Vulnerability Details
- CVE ID
- CVE-2025-11298
- Severity
- Medium
- CVSS v3 Score
- 6.3 / 10.0
- Affected Vendor
- unknown
- Publication Date
- October 05, 2025
External Resources
Need Help?
Protect your infrastructure with our comprehensive security scanning tools.
Explore Security Scanners