CVE-2025-12943

CVSS v2.0

8.3

High

Vector

AV:A/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions NETGEAR RAX30 (Nighthawk AX5 5-Stream AX2400 WiFi 6 Router) versions prior to 1.0.14.108 NETGEAR RAXE300 (Nighthawk AXE7800 Tri-Band WiFi 6E Router) versions prior to 1.0.9.82

Description A flaw exists in the firmware update logic due to improper certificate validation. This allows attackers who can intercept and modify network traffic intended for the device to execute arbitrary commands.

Recommendations NETGEAR RAX30 (Nighthawk AX5 5-Stream AX2400 WiFi 6 Router) versions prior to 1.0.14.108 should be updated to firmware version 1.0.14.108 or later. NETGEAR RAXE300 (Nighthawk AXE7800 Tri-Band WiFi 6E Router) versions prior to 1.0.9.82 should be updated to firmware version 1.0.9.82 or later.

Fix

Improper Certificate Validation

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-295

Related Identifiers

BDU:2025-15936

CVE-2025-12943

Affected Products

Netgear Rax30

Netgear Raxe300

CVE-2025-12943

Weakness Enumeration

Related Identifiers

Affected Products

References · 12