CRITICAL🇵🇱 Wersja polska

CVE-2024-57231

CVSS 9.8v3.1pub. 2025-05-05upd. 2025-05-07

NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_do_enr_pbc_wps function.

🤖 AI Analysis
How it works

The vulnerability lies in the lack of proper validation of the ifname parameter passed to the apcli_do_enr_pbc_wps function. An attacker can provide a crafted parameter value containing malicious system commands that will be executed by the device. The attack is possible remotely, without requiring privileges or user interaction.

Impact

An attacker can gain full control over the device — achieve unauthorized execution of arbitrary system commands (RCE), and consequently compromise the confidentiality, integrity, and availability of the router and the network behind it.

Mitigation & patch

Apply patches available from the manufacturer according to the references. It is recommended to monitor official Netgear firmware updates for the RAX5 model and implement them immediately. Until the patch is installed, it is advisable to restrict access to the device's administrative panel exclusively to trusted hosts on the local network.

Who is affected

Netgear RAX5 (AX1600 WiFi Router) with firmware version V1.0.2.26

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Netgear Rax50

    HW
    Netgear
    wszystkie wersje
  • Netgear Rax50 Firmware

    OS
    Netgear
    1.0.2.26
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-57232CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 via parametr ifname

CVE-2024-57233CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 przez parametr iface

CVE-2024-57229CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 poprzez parametr devname

CVE-2024-57230CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 przez parametr ifname

CVE-2024-57234CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 via parametr ifname