CRITICAL🇵🇱 Wersja polska

CVE-2024-57230

CVSS 9.8v3.1pub. 2025-05-05upd. 2025-05-07

NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_do_enr_pin_wps function.

🤖 AI Analysis
How it works

The vulnerability results from improper sanitization of the ifname parameter passed to the apcli_do_enr_pin_wps function. An attacker can inject arbitrary system commands through a properly crafted ifname parameter value, which will then be executed by the router with system privileges. The attack is possible remotely, without authentication and without user interaction.

Impact

An attacker gains the ability to remotely execute arbitrary system commands on the vulnerable router (RCE), resulting in complete device takeover, including access to sensitive configuration data and the ability to compromise network integrity and availability.

Mitigation & patch

Apply patches available from the manufacturer according to the references. It is recommended to monitor the NETGEAR support page for firmware updates. Temporarily, consider restricting access to the router's management interface only from trusted local networks.

Who is affected

NETGEAR RAX5 (AX1600 WiFi Router) in firmware version V1.0.2.26

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Netgear Rax50

    HW
    Netgear
    wszystkie wersje
  • Netgear Rax50 Firmware

    OS
    Netgear
    1.0.2.26
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-57232CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 via parametr ifname

CVE-2024-57233CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 przez parametr iface

CVE-2024-57229CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 poprzez parametr devname

CVE-2024-57231CRITICAL9.8PL ✓ten sam produkt

Command injection w Netgear RAX5 V1.0.2.26 via parametr ifname

CVE-2024-57234CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 via parametr ifname