CVE-2025-12943MEDIUMCVSS 5.2fixed in 1.0.9.822025-11-11
CVE-2025-12943 [MEDIUM] CWE-295 CVE-2025-12943: Improper certificate
validation in firmware update logic in NETGEAR RAX30 (Nighthawk AX5 5-Stream
AX
Improper certificate
validation in firmware update logic in NETGEAR RAX30 (Nighthawk AX5 5-Stream
AX2400 WiFi 6 Router) and RAXE300 (Nighthawk AXE7800 Tri-Band
WiFi 6E Router) allows attackers with the ability to intercept and
tamper traffic destined to the device to execute arbitrary commands on the
device.
Devices
with automatic updates enabled m
cvelistv5nvd