Vulnerabilities > Netgear

DATE CVE VULNERABILITY TITLE RISK
2025-05-05 CVE-2024-57229 Command Injection vulnerability in Netgear Rax50 Firmware 1.0.2.26
NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the devname parameter in the reset_wifi function.
network
low complexity
netgear CWE-77
critical
9.8
2025-05-05 CVE-2024-57230 Command Injection vulnerability in Netgear Rax50 Firmware 1.0.2.26
NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_do_enr_pin_wps function.
network
low complexity
netgear CWE-77
critical
9.8
2025-05-05 CVE-2024-57231 Command Injection vulnerability in Netgear Rax50 Firmware 1.0.2.26
NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_do_enr_pbc_wps function.
network
low complexity
netgear CWE-77
critical
9.8
2025-05-05 CVE-2024-57232 Command Injection vulnerability in Netgear Rax50 Firmware 1.0.2.26
NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_wps_gen_pincode function.
network
low complexity
netgear CWE-77
critical
9.8
2025-05-05 CVE-2024-57233 Command Injection vulnerability in Netgear Rax50 Firmware 1.0.2.26
NETGEAR RAX5 (AX1600 WiFi Router) v1.0.2.26 was discovered to contain a command injection vulnerability via the iface parameter in the vif_disable function.
network
low complexity
netgear CWE-77
critical
9.8
2025-05-05 CVE-2024-57234 Command Injection vulnerability in Netgear Rax50 Firmware 1.0.2.26
NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_cancel_wps function.
network
low complexity
netgear CWE-77
critical
9.8
2025-05-05 CVE-2024-57235 Command Injection vulnerability in Netgear Rax50 Firmware 1.0.2.26
NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the iface parameter in the vif_enable function.
network
low complexity
netgear CWE-77
critical
9.8
2024-11-22 CVE-2023-51634 Improper Certificate Validation vulnerability in Netgear Rax30 Firmware
NETGEAR RAX30 Improper Certificate Validation Remote Code Execution Vulnerability.
high complexity
netgear CWE-295
7.5
2024-11-22 CVE-2023-51635 Out-of-bounds Write vulnerability in Netgear Rax30 Firmware
NETGEAR RAX30 fing_dil Stack-based Buffer Overflow Remote Code Execution Vulnerability.
low complexity
netgear CWE-787
8.8
2024-10-14 CVE-2024-35518 Command Injection vulnerability in Netgear Ex6120 Firmware
Netgear EX6120 v1.0.0.68 is vulnerable to Command Injection in genie_fix2.cgi via the wan_dns1_pri parameter.
low complexity
netgear CWE-77
6.8