CVE-2026-5043 identifies a critical stack-based buffer overflow vulnerability in the Belkin F9K1122 router firmware version 1.00.33. The vulnerability resides in the formSetPassword function of the Parameter Handler component, specifically within the /goform/formSetPassword endpoint. This function improperly processes user-supplied input parameters, leading to a stack overflow condition when maliciously crafted arguments are sent. The flaw allows remote attackers to overwrite the stack memory, potentially enabling arbitrary code execution on the device with elevated privileges. The attack vector is network-based, requiring no authentication or user interaction, which significantly lowers the barrier for exploitation. The vulnerability has been publicly disclosed with an exploit available, but Belkin has not responded or released a patch, leaving devices vulnerable. The CVSS v4.0 score is 8.7, reflecting high impact on confidentiality, integrity, and availability. The exploitability is high due to low complexity and no required privileges. This vulnerability threatens the security of affected routers by enabling attackers to gain full control, disrupt network operations, or pivot into internal networks.

The impact of CVE-2026-5043 is severe for organizations using the Belkin F9K1122 router, as successful exploitation can lead to full device compromise. Attackers can execute arbitrary code remotely, potentially gaining administrative control over the router. This can result in interception or manipulation of network traffic, disruption of network availability, and use of the compromised device as a foothold for further attacks within the internal network. The lack of vendor response and patch increases the risk of widespread exploitation, especially since a public exploit is available. Organizations relying on this router model may face data breaches, service outages, and loss of network integrity. The vulnerability also poses risks to home users and small businesses that use this device, potentially exposing sensitive information and network resources.

Given the absence of an official patch from Belkin, organizations should take immediate compensating controls. First, isolate the affected devices from untrusted networks, especially the internet, by placing them behind firewalls or disabling remote management interfaces. Restrict access to the /goform/formSetPassword endpoint by implementing network-level filtering or access control lists to block unauthorized requests. Monitor network traffic for unusual activity targeting the router’s management interface. If possible, replace the affected Belkin F9K1122 devices with alternative routers that have up-to-date firmware and security support. Regularly audit network devices for vulnerable firmware versions and maintain an inventory to quickly identify at-risk equipment. Additionally, consider deploying intrusion detection systems capable of recognizing exploit attempts targeting this vulnerability. Stay alert for any vendor updates or third-party patches and apply them promptly once available.