NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_do_enr_pbc_wps function.
The vulnerability lies in the lack of proper validation of the ifname parameter passed to the apcli_do_enr_pbc_wps function. An attacker can provide a crafted parameter value containing malicious system commands that will be executed by the device. The attack is possible remotely, without requiring privileges or user interaction.
An attacker can gain full control over the device — achieve unauthorized execution of arbitrary system commands (RCE), and consequently compromise the confidentiality, integrity, and availability of the router and the network behind it.
Apply patches available from the manufacturer according to the references. It is recommended to monitor official Netgear firmware updates for the RAX5 model and implement them immediately. Until the patch is installed, it is advisable to restrict access to the device's administrative panel exclusively to trusted hosts on the local network.
Netgear RAX5 (AX1600 WiFi Router) with firmware version V1.0.2.26
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HNetgear Rax50
HWNetgearwszystkie wersjeNetgear Rax50 Firmware
OSNetgear1.0.2.26
Related vulnerabilities
Command injection w routerze NETGEAR RAX5 via parametr ifname
Command injection w routerze NETGEAR RAX5 przez parametr iface
Command injection w routerze NETGEAR RAX5 poprzez parametr devname
Command injection w routerze NETGEAR RAX5 przez parametr ifname
Command injection w routerze NETGEAR RAX5 via parametr ifname