Back to overview

CVE-2026-62658

MEDIUM
4.7
CVSS 4.0
Description
A security flaw was discovered in certain NETGEAR Nighthawk RAX series routers that could allow someone already logged in to the device to run unauthorized commands or code on the router.

Metadata

CVE ID
CVE-2026-62658
State
PUBLISHED
Assigner
NETGEAR
Reserved
2026-07-14 16:31 UTC
Published
2026-07-14 17:46 UTC
Last updated
2026-07-14 17:46 UTC
Primary CWE
CWE-20
CWE-20 Improper input validation
Vendor / Product
NETGEAR / RAX43
Sources
cve.org  ·  NVD

Severity & Metrics

4.7 MEDIUM CVSS 4.0
CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P
Affected products (5)
VendorProductPlatformVersions
NETGEAR RAX43 0 < V1.0.17.142
NETGEAR RAX45 0 < V1.0.17.142
NETGEAR RAX50 0 < V1.0.17.142
NETGEAR RAX54S 0 < V1.0.17.142
NETGEAR RAX54Sv2 0 < V1.1.6.36
Weakness (CWE)
CWESourceDescription
CWE-20 cna CWE-20 Improper input validation
CVSS scores (1)
ScoreSeverityVersionSourceVector
4.7 MEDIUM 4.0 cna CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P
Back to overview