A vulnerability was detected in Belkin F9K1015 1.00.10. Affected is an unknown function of the file /goform/mp. Performing manipulation of the argument command results in command injection. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2025-11303
🟡 Medium
CVE-2025-11303: Command injection vulnerability in Belkin F9K1015 router
A vulnerability in Belkin F9K1015 1.00.10 allows remote command injection via the /goform/mp file. The vendor has not responded to disclosures.
CVE ID
CVE-2025-11303
CVSS Score
6.3
Vendor
unknown
Published
Oct 05
Vulnerability Details
- CVE ID
- CVE-2025-11303
- Severity
- Medium
- CVSS v3 Score
- 6.3 / 10.0
- Affected Vendor
- unknown
- Publication Date
- October 05, 2025
External Resources
Need Help?
Protect your infrastructure with our comprehensive security scanning tools.
Explore Security Scanners