Which versions of Belkin F9K1122 are affected by CVE-2026-5044?

Belkin F9K1122 routers running version 1.00.33 contain a stack-based buffer overflow in the system settings endpoint that allows authenticated attackers to fully compromise affected devices.

Is there a public PoC exploit available for CVE-2026-5044?

Yes, a public proof-of-concept exploit is available for CVE-2026-5044. Prioritise patching immediately. EPSS: 0.0%.

Belkin F9K1122 CVE-2026-5044

Q: What is the CVSS score of CVE-2026-5044?

CVE-2026-5044 has a CVSS 4.0 base score of 7.4 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2026-16991 HIGH

Stack-based Buffer Overflow (CWE-121)

2026-03-29 VulDB

Buffer Overflow Stack Overflow

7.4

CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

PoC Detected

Mar 30, 2026 - 19:02 vuln.today

Public exploit code

EUVD ID Assigned

Mar 29, 2026 - 12:30 euvd

EUVD-2026-16991

Analysis Generated

Mar 29, 2026 - 12:30 vuln.today

CVE Published

Mar 29, 2026 - 12:15 nvd

HIGH 7.4

DescriptionNVD

A security vulnerability has been detected in Belkin F9K1122 1.00.33. This affects the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. Such manipulation of the argument webpage leads to stack-based buffer overflow. The attack can be executed remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

Stack-based buffer overflow in Belkin F9K1122 router version 1.00.33 allows authenticated remote attackers to achieve full system compromise via the formSetSystemSettings endpoint. The vulnerability resides in the Setting Handler component's webpage parameter processing. …

RemediationAI

Within 24 hours: Inventory all Belkin F9K1122 devices and confirm installed versions; isolate any running version 1.00.33 from critical network segments. Within 7 days: Contact Belkin support to determine firmware update availability and timeline; implement network access controls restricting administrative access to the router's web interface to trusted IP ranges only. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-5044 vulnerability details – vuln.today

Back

Belkin F9K1122 CVE-2026-5044

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

Share

Belkin F9K1122 CVE-2026-5044

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code