CVE-2026-62658
MEDIUM
4.7
CVSS 4.0
Description
A security flaw was discovered in certain NETGEAR Nighthawk RAX series routers
that could allow someone already logged in to the device to run unauthorized commands
or code on the router.
Metadata
Severity & Metrics
4.7
MEDIUM CVSS 4.0
CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P
Affected products (5)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| NETGEAR | RAX43 | — | 0 < V1.0.17.142 |
| NETGEAR | RAX45 | — | 0 < V1.0.17.142 |
| NETGEAR | RAX50 | — | 0 < V1.0.17.142 |
| NETGEAR | RAX54S | — | 0 < V1.0.17.142 |
| NETGEAR | RAX54Sv2 | — | 0 < V1.1.6.36 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-20 | cna | CWE-20 Improper input validation |
CVSS scores (1)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 4.7 | MEDIUM | 4.0 | cna | CVSS:4.0/AV:A/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P |
References (4)