Vulnerabilities > Netgear > Rax30 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-03-14 CVE-2023-1327 Improper Authentication vulnerability in Netgear Rax30 Firmware 1.0.3.64/1.0.4.66/1.0.5.70
Netgear RAX30 (AX2400), prior to version 1.0.6.74, was affected by an authentication bypass vulnerability, allowing an unauthenticated attacker to gain administrative access to the device's web management interface by resetting the admin password.
network
low complexity
netgear CWE-287
critical
 9.8
9.8
2023-03-10 CVE-2023-27853 Classic Buffer Overflow vulnerability in Netgear Rax30 Firmware
NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a format string vulnerability in a SOAP service that could allow an attacker to execute arbitrary code on the device.
network
low complexity
netgear CWE-120
critical
 9.8
9.8
2023-03-10 CVE-2023-27852 Classic Buffer Overflow vulnerability in Netgear Rax30 Firmware
NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a buffer overflow vulnerability in various CGI mechanisms that could allow an attacker to execute arbitrary code on the device.
network
low complexity
netgear CWE-120
critical
 9.8
9.8