Home

Description

A security flaw was discovered in certain NETGEAR Nighthawk RAX series routers that could allow someone already logged in to the device to run unauthorized commands or code on the router.

PUBLISHED Reserved 2026-07-14 | Published 2026-07-14 | Updated 2026-07-14 | Assigner NETGEAR




MEDIUM: 4.7CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P

Problem types

CWE-20 Improper input validation

Product status

Default status
unaffected

Any version before V1.0.17.142
affected

Default status
unaffected

Any version before V1.0.17.142
affected

Default status
unaffected

Any version before V1.0.17.142
affected

Default status
unaffected

Any version before V1.0.17.142
affected

Default status
unaffected

Any version before V1.1.6.36
affected

Credits

Matt19 finder

References

www.netgear.com/support/product/rax43/ product patch

www.netgear.com/support/product/rax45/ product patch

www.netgear.com/support/product/rax50/ product patch

www.netgear.com/support/product/rax54sv2/ product patch

cve.org (CVE-2026-62658)

nvd.nist.gov (CVE-2026-62658)

Download JSON