Authorization Flaw in Belkin Router Firmware
CVE-2015-5989
9.8CRITICAL
What is CVE-2015-5989?
The Belkin F9K1102 router, running firmware version 2.10.17, contains a vulnerability that relies on client-side JavaScript for authorization checks. This design flaw can be exploited by remote attackers, allowing them to modify LockStatus and Login_Success values. Through these manipulations, attackers can gain unauthorized administrative access to the router, potentially compromising the entire network. This emphasizes the need for secure coding practices and server-side validation to prevent such vulnerabilities.