Netgear Rax30 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Netgear Rax30 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (33)
CVE-2023-27853 — CVSS 9.8 (critical): NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a format string vulnerability in a SOAP service that could allow an attacker to…
CVE-2023-27852 — CVSS 9.8 (critical): NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a buffer overflow vulnerability in various CGI mechanisms that could allow an…
CVE-2025-44658 — CVSS 9.8 (critical): In Netgear RAX30 V1.0.10.94, a PHP-FPM misconfiguration vulnerability is caused by not following the specification to only limit FPM to…
CVE-2023-1327 — CVSS 9.8 (critical): Netgear RAX30 (AX2400), prior to version 1.0.6.74, was affected by an authentication bypass vulnerability, allowing an unauthenticated…
CVE-2026-9211 — CVSS 8.8 (high): An unauthenticated user on the local network can gain control of the router and make unauthorized changes to its operation.
CVE-2023-1205 — CVSS 8.8 (high): NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 is vulnerable to cross-site request forgery attacks on all endpoints due to improperly…
CVE-2023-27851 — CVSS 8.8 (high): NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a file sharing mechanism that unintentionally allows users with upload…
CVE-2023-28337 — CVSS 8.8 (high): When uploading a firmware image to a Netgear Nighthawk Wifi6 Router (RAX30), a hidden “forceFWUpdate” parameter may be provided to…
CVE-2022-47209 — CVSS 8.8 (high): A support user exists on the device and appears to be a backdoor for Technical Support staff. The default password for this account is…
CVE-2022-47210 — CVSS 7.8 (high): The default console presented to users over telnet (when enabled) is restricted to a subset of commands. Commands issued at this console…
CVE-2025-44652 — CVSS 7.5 (high): In Netgear RAX30 V1.0.10.94_3, the USERLIMIT_GLOBAL option is set to 0 in multiple bftpd-related configuration files. This can cause DoS…
CVE-2023-28338 — CVSS 7.5 (high): Any request send to a Netgear Nighthawk Wifi6 Router (RAX30)'s web service containing a “Content-Type” of “multipartboundary=” will…
CVE-2025-12943 — CVSS 7.5 (high): Improper certificate validation in firmware update logic in NETGEAR RAX30 (Nighthawk AX5 5-Stream AX2400 WiFi 6 Router) and RAXE300…
CVE-2023-48725 — CVSS 7.2 (high): A stack-based buffer overflow vulnerability exists in the JSON Parsing getblockschedule() functionality of Netgear RAX30 1.0.11.96 and…
CVE-2023-27850 — CVSS 6.8 (medium): NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a file sharing mechanism that allows users with access to this feature to…
CVE-2023-27357 — CVSS 6.5 (medium): NETGEAR RAX30 GetInfo Missing Authentication Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to…
CVE-2023-34284 — CVSS 6.3 (medium): NETGEAR RAX30 Use of Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to…
CVE-2023-27370 — CVSS 5.7 (medium): NETGEAR RAX30 Device Configuration Cleartext Storage Information Disclosure Vulnerability. This vulnerability allows network-adjacent…
CVE-2023-34283 — CVSS 4.6 (medium): NETGEAR RAX30 USB Share Link Following Information Disclosure Vulnerability. This vulnerability allows physically present attackers to…