CVE-2025-12943

< 1.0.14.108

Improper certificate validation in firmware update logic in NETGEAR RAX30 (Nighthawk AX5 5-Stream AX2400 WiFi 6 Router) and RAXE30

7.5HIGH

CVE-2025-44652

all versions

In Netgear RAX30 V1.0.10.94_3, the USERLIMIT_GLOBAL option is set to 0 in multiple bftpd-related configuration files. This can cau

7.5HIGH

CVE-2025-44658

all versions

In Netgear RAX30 V1.0.10.94, a PHP-FPM misconfiguration vulnerability is caused by not following the specification to only limit F

9.8CRITICAL

CVE-2023-51635

< 1.0.12.100_hotfix

NETGEAR RAX30 fing_dil Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent

8.8HIGH

CVE-2023-51634

< 1.0.12.100_hotfix

NETGEAR RAX30 Improper Certificate Validation Remote Code Execution Vulnerability. This vulnerability allows network-adjacent atta

7.5HIGH

CVE-2023-40480

< 1.0.9.92

NETGEAR RAX30 DHCP Server Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attack

8.8HIGH

CVE-2023-40479

< 1.0.9.92

NETGEAR RAX30 UPnP Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to

8.8HIGH

CVE-2023-40478

< 1.0.10.94

NETGEAR RAX30 Telnet CLI passwd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network

6.8MEDIUM

CVE-2023-35722

< 1.0.11.96_2_hotfix

NETGEAR RAX30 UPnP Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to

8.8HIGH

CVE-2023-34285

< 1.0.11.96_2_hotfix

NETGEAR RAX30 cmsCli_authenticate Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows netwo

8.8HIGH

CVE-2023-34284

< 1.0.10.94

NETGEAR RAX30 Use of Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attack

6.3MEDIUM

CVE-2023-34283

< 1.0.10.94

NETGEAR RAX30 USB Share Link Following Information Disclosure Vulnerability. This vulnerability allows physically present attacker

4.6MEDIUM

CVE-2023-27370

< 1.0.10.94

NETGEAR RAX30 Device Configuration Cleartext Storage Information Disclosure Vulnerability. This vulnerability allows network-adjac

5.7MEDIUM

CVE-2023-27369

< 1.0.10.94

NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability. This vulnerability allows network-adj

8.8HIGH

CVE-2023-27368

< 1.0.10.94

NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability. This vulnerability allows network-adja

8.8HIGH

CVE-2023-27367

< 1.0.10.94

NETGEAR RAX30 libcms_cli Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attacke

8.0HIGH

CVE-2023-27361

< 1.0.9.92

NETGEAR RAX30 rex_cgi JSON Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows netw

8.0HIGH

CVE-2023-27360

< 1.0.10.94

NETGEAR RAX30 lighttpd Misconfiguration Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers

8.8HIGH

CVE-2023-27358

< 1.0.10.94

NETGEAR RAX30 SOAP Request SQL Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers

8.8HIGH

CVE-2023-27357

< 1.0.10.94

NETGEAR RAX30 GetInfo Missing Authentication Information Disclosure Vulnerability. This vulnerability allows network-adjacent atta

6.5MEDIUM

CVE-2023-27356

< 1.0.10.94

NETGEAR RAX30 logCtrl Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers

8.0HIGH

CVE-2023-48725

all versions

A stack-based buffer overflow vulnerability exists in the JSON Parsing getblockschedule() functionality of Netgear RAX30 1.0.11.96

7.2HIGH

CVE-2023-28338

all versions

Any request send to a Netgear Nighthawk Wifi6 Router (RAX30)'s web service containing a “Content-Type” of “multipartboundary

7.5HIGH

CVE-2023-28337

all versions

When uploading a firmware image to a Netgear Nighthawk Wifi6 Router (RAX30), a hidden “forceFWUpdate” parameter may be provide

8.8HIGH

CVE-2023-1327

< 1.0.6.74

Netgear RAX30 (AX2400), prior to version 1.0.6.74, was affected by an authentication bypass vulnerability, allowing an unauthentic

9.8CRITICAL

CVE-2023-27853

< 1.0.10.94

NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a format string vulnerability in a SOAP service that could allow an at

9.8CRITICAL

CVE-2023-27852

< 1.0.10.94

NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a buffer overflow vulnerability in various CGI mechanisms that could a

9.8CRITICAL

CVE-2023-27851

< 1.0.10.94

NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a file sharing mechanism that unintentionally allows users with upload

8.8HIGH

CVE-2023-27850

< 1.0.10.94

NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a file sharing mechanism that allows users with access to this feature

6.8MEDIUM

CVE-2023-1205

< 1.0.10.94

NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 is vulnerable to cross-site request forgery attacks on all endpoints due to imp

8.8HIGH

CVE-2022-47210

< 1.0.9.90

The default console presented to users over telnet (when enabled) is restricted to a subset of commands. Commands issued at this c

7.8HIGH

CVE-2022-47209

< 1.0.9.90

A support user exists on the device and appears to be a backdoor for Technical Support staff. The default password for this accoun

8.8HIGH