Home

Description

EN DE

A vulnerability was determined in Belkin AX1800 1.1.00.016. Affected by this vulnerability is an unknown functionality of the component Firmware Update Handler. This manipulation causes insufficient verification of data authenticity. The attack can be initiated remotely. The vendor was contacted early about this disclosure but did not respond in any way.

Eine Schwachstelle wurde in Belkin AX1800 1.1.00.016 gefunden. Dies betrifft einen unbekannten Teil der Komponente Firmware Update Handler. Durch Beeinflussen mit unbekannten Daten kann eine insufficient verification of data authenticity-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk erfolgen.

PUBLISHED Reserved 2025-08-23 | Published 2025-08-24 | Updated 2025-08-25 | Assigner VulDB




HIGH: 8.6CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X
HIGH: 7.2CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:R
HIGH: 7.2CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:R
8.3AV:N/AC:L/Au:M/C:C/I:C/A:C/E:ND/RL:ND/RC:UR

Problem types

Insufficient Verification of Data Authenticity

Product status

1.1.00.016
affected

Timeline

2025-08-23:Advisory disclosed
2025-08-23:VulDB entry created
2025-08-23:VulDB entry last update

Credits

IOT_Res (VulDB User) reporter

References

vuldb.com/?id.321212 (VDB-321212 | Belkin AX1800 Firmware Update data authenticity) vdb-entry

vuldb.com/?ctiid.321212 (VDB-321212 | CTI Indicators (IOB, IOC)) signature permissions-required

vuldb.com/?submit.628641 (Submit #628641 | Belkin AX1800 WiFi 6 Router V1.1.00.016 CWE-20 Improper Input Validation) third-party-advisory

github.com/...IOT_Firmware_Update/blob/main/Belkin/AX1800.md patch

cve.org (CVE-2025-9379)

nvd.nist.gov (CVE-2025-9379)

Download JSON