CRITICAL🇵🇱 Wersja polska

CVE-2024-57234

CVSS 9.8v3.1pub. 2025-05-05upd. 2025-05-07

NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_cancel_wps function.

🤖 AI Analysis
How it works

The vulnerability occurs in the ifname parameter passed to the apcli_cancel_wps function. User-supplied input is not properly filtered or validated before being passed to a system call, which classifies the issue as CWE-77 (improper neutralization of special elements used in a command). An attacker can craft a malicious payload containing additional system commands that will be executed by the device.

Impact

An attacker can remotely and without authentication gain full control of the device, including the ability to read and modify configuration, sensitive data, and potentially use the router as an entry point to the local network.

Mitigation & patch

Apply patches available from the manufacturer according to the references. It is recommended to monitor the NETGEAR support page for firmware updates and — until the patch is deployed — restrict access to the administration panel only from trusted IP addresses or isolate the device from the public network.

Who is affected

NETGEAR RAX5 (AX1600 WiFi Router) with firmware version V1.0.2.26

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Netgear Rax50

    HW
    Netgear
    wszystkie wersje
  • Netgear Rax50 Firmware

    OS
    Netgear
    1.0.2.26
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-57231CRITICAL9.8PL ✓ten sam produkt

Command injection w Netgear RAX5 V1.0.2.26 via parametr ifname

CVE-2024-57232CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 via parametr ifname

CVE-2024-57229CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 poprzez parametr devname

CVE-2024-57230CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 przez parametr ifname

CVE-2024-57233CRITICAL9.8PL ✓ten sam produkt

Command injection w routerze NETGEAR RAX5 przez parametr iface