Rqu4

**Name of the Vulnerable Software and Affected Versions** NETGEAR RAX30 (Nighthawk AX5 5-Stream AX2400 WiFi 6 Router) versions prior to 1.0.14.108 NETGEAR RAXE300 (Nighthawk AXE7800 Tri-Band WiFi 6E Router) versions prior to 1.0.9.82 **Description** A flaw exists in the firmware update logic due to improper certificate validation. This allows attackers who can intercept and modify network traffic intended for the device to execute arbitrary commands. **Recommendations** NETGEAR RAX30 (Nighthawk AX5 5-Stream AX2400 WiFi 6 Router) versions prior to 1.0.14.108 should be updated to firmware version 1.0.14.108 or later. NETGEAR RAXE300 (Nighthawk AXE7800 Tri-Band WiFi 6E Router) versions prior to 1.0.9.82 should be updated to firmware version 1.0.9.82 or later.