A
security flaw was found in certain NETGEAR RAX models that could allow
a logged-in user to send specially crafted requests to the router and run
unauthorized commands. This could enable the user to make unauthorized changes
to the router and affect its security and operation.
Metrics
Affected Vendors & Products
References
History
Wed, 15 Jul 2026 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Netgear
Netgear raxe450 Netgear raxe500 |
|
| Vendors & Products |
Netgear
Netgear raxe450 Netgear raxe500 |
Wed, 15 Jul 2026 17:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 15 Jul 2026 17:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Tue, 14 Jul 2026 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A security flaw was found in certain NETGEAR RAX models that could allow a logged-in user to send specially crafted requests to the router and run unauthorized commands. This could enable the user to make unauthorized changes to the router and affect its security and operation. | |
| Title | Post-authenticated command injection vulnerability found in certain NETGEAR RAX models | |
| Weaknesses | CWE-20 | |
| References |
| |
| Metrics |
cvssV4_0
|
Status: PUBLISHED
Assigner: NETGEAR
Published: 2026-07-14T17:46:15.194Z
Updated: 2026-07-15T16:53:59.077Z
Reserved: 2026-07-14T16:31:02.508Z
Link: CVE-2026-62656
Updated: 2026-07-15T14:45:01.603Z
No data.
No data.