{"api_version":"1","generated_at":"2026-07-14T22:53:00+00:00","cve":"CVE-2026-62657","urls":{"html":"https://cve.report/CVE-2026-62657","api":"https://cve.report/api/cve/CVE-2026-62657.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-62657","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-62657"},"summary":{"title":"Certificate validation vulnerability in NETGEAR Gaming Router and certain Nighthawk models","description":"A security flaw in the router's certificate validation process was\ndiscovered in the NETGEAR XR1000 Gaming Router and certain Nighthawk models that could allow an unauthorized person to remotely access and take\ncontrol of the device.","state":"PUBLISHED","assigner":"NETGEAR","published_at":"2026-07-14 18:18:47","updated_at":"2026-07-14 18:18:47"},"problem_types":["CWE-599","CWE-599 CWE-599 Missing validation of OpenSSL certificate"],"metrics":[{"version":"4.0","source":"a2826606-91e7-4eb6-899e-8484bd4575d5","type":"Secondary","score":"4.9","severity":"MEDIUM","vector":"CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber","data":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"ADJACENT","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"UNREPORTED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"AMBER"}},{"version":"4.0","source":"CNA","type":"CVSS","score":"4.9","severity":"MEDIUM","vector":"CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber","data":{"Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","Safety":"NOT_DEFINED","attackComplexity":"HIGH","attackRequirements":"PRESENT","attackVector":"ADJACENT","baseScore":4.9,"baseSeverity":"MEDIUM","exploitMaturity":"UNREPORTED","privilegesRequired":"NONE","providerUrgency":"AMBER","subAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","userInteraction":"NONE","valueDensity":"NOT_DEFINED","vectorString":"CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber","version":"4.0","vulnAvailabilityImpact":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnerabilityResponseEffort":"NOT_DEFINED"}}],"references":[{"url":"https://www.netgear.com/support/product/ms70/","name":"https://www.netgear.com/support/product/ms70/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/mr70/","name":"https://www.netgear.com/support/product/mr70/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/xr1000/","name":"https://www.netgear.com/support/product/xr1000/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/raxe500/","name":"https://www.netgear.com/support/product/raxe500/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-62657","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-62657","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"NETGEAR","product":"MR70","version":"affected V1.0.4.48 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"MS70","version":"affected V1.0.4.48 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RAXE500","version":"affected V1.2.14.114 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"XR1000","version":"affected V1.0.2.86 custom","platforms":[]}],"timeline":[],"solutions":[{"source":"CNA","title":"","value":"Devices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:\n\nProductFixed VersionMR70 Nighthawk Mesh WiFi 6 Router V1.0.4.48 https://www.netgear.com/support/product/mr70/ MS70 Nighthawk Mesh WiFi 6 Add-on Satellite V1.0.4.48 https://www.netgear.com/support/product/ms70/ RAXE500 Nighthawk AX12 12-Stream AXE11000 Tri-Band WiFi 6E Router V1.2.14.114 https://www.netgear.com/support/product/raxe500/ XR1000 Nighthawk WiFi 6 Pro Gaming Router V1.0.2.86 https://www.netgear.com/support/product/xr1000/","time":"","lang":"en"}],"workarounds":[],"exploits":[],"credits":[{"source":"CNA","value":"fluorescent","lang":"en"}],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","product":"MR70","vendor":"NETGEAR","versions":[{"lessThan":"V1.0.4.48","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"MS70","vendor":"NETGEAR","versions":[{"lessThan":"V1.0.4.48","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RAXE500","vendor":"NETGEAR","versions":[{"lessThan":"V1.2.14.114","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"XR1000","vendor":"NETGEAR","versions":[{"lessThan":"V1.0.2.86","status":"affected","version":"0","versionType":"custom"}]}],"credits":[{"lang":"en","type":"finder","value":"fluorescent"}],"datePublic":"2026-07-14T00:00:00.000Z","descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>A security flaw in the router's certificate validation process was\ndiscovered in the NETGEAR XR1000 Gaming Router and certain Nighthawk models that could allow an unauthorized person to remotely access and take\ncontrol of the device.</p>"}],"value":"A security flaw in the router's certificate validation process was\ndiscovered in the NETGEAR XR1000 Gaming Router and certain Nighthawk models that could allow an unauthorized person to remotely access and take\ncontrol of the device."}],"impacts":[{"capecId":"CAPEC-233","descriptions":[{"lang":"en","value":"CAPEC-233 Privilege Escalation"}]}],"metrics":[{"cvssV4_0":{"Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","Safety":"NOT_DEFINED","attackComplexity":"HIGH","attackRequirements":"PRESENT","attackVector":"ADJACENT","baseScore":4.9,"baseSeverity":"MEDIUM","exploitMaturity":"UNREPORTED","privilegesRequired":"NONE","providerUrgency":"AMBER","subAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","userInteraction":"NONE","valueDensity":"NOT_DEFINED","vectorString":"CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber","version":"4.0","vulnAvailabilityImpact":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnerabilityResponseEffort":"NOT_DEFINED"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-599","description":"CWE-599 Missing validation of OpenSSL certificate","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-07-14T17:46:13.757Z","orgId":"a2826606-91e7-4eb6-899e-8484bd4575d5","shortName":"NETGEAR"},"references":[{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/mr70/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/raxe500/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/ms70/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/xr1000/"}],"solutions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>Devices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:</p><table style=\"border-collapse:collapse;\"><thead><tr><th style=\"border:1px solid gray;padding:4px 8px;text-align:left;\">Product</th><th style=\"border:1px solid gray;padding:4px 8px;text-align:left;\">Fixed Version</th></tr></thead><tbody><tr><td style=\"border:1px solid gray;padding:4px 8px;text-align:left;\"><b>MR70</b> Nighthawk Mesh WiFi 6 Router</td><td style=\"border:1px solid gray;padding:4px 8px;text-align:left;\"><a href=\"https://www.netgear.com/support/product/mr70/\">V1.0.4.48</a></td></tr><tr><td style=\"border:1px solid gray;padding:4px 8px;text-align:left;\"><b>MS70</b> Nighthawk Mesh WiFi 6 Add-on Satellite</td><td style=\"border:1px solid gray;padding:4px 8px;text-align:left;\"><a href=\"https://www.netgear.com/support/product/ms70/\">V1.0.4.48</a></td></tr><tr><td style=\"border:1px solid gray;padding:4px 8px;text-align:left;\"><b>RAXE500</b> Nighthawk AX12 12-Stream AXE11000 Tri-Band WiFi 6E Router</td><td style=\"border:1px solid gray;padding:4px 8px;text-align:left;\"><a href=\"https://www.netgear.com/support/product/raxe500/\">V1.2.14.114</a></td></tr><tr><td style=\"border:1px solid gray;padding:4px 8px;text-align:left;\"><b>XR1000</b> Nighthawk WiFi 6 Pro Gaming Router</td><td style=\"border:1px solid gray;padding:4px 8px;text-align:left;\"><a href=\"https://www.netgear.com/support/product/xr1000/\">V1.0.2.86</a></td></tr></tbody></table>"}],"value":"Devices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:\n\nProductFixed VersionMR70 Nighthawk Mesh WiFi 6 Router V1.0.4.48 https://www.netgear.com/support/product/mr70/ MS70 Nighthawk Mesh WiFi 6 Add-on Satellite V1.0.4.48 https://www.netgear.com/support/product/ms70/ RAXE500 Nighthawk AX12 12-Stream AXE11000 Tri-Band WiFi 6E Router V1.2.14.114 https://www.netgear.com/support/product/raxe500/ XR1000 Nighthawk WiFi 6 Pro Gaming Router V1.0.2.86 https://www.netgear.com/support/product/xr1000/"}],"source":{"discovery":"EXTERNAL"},"title":"Certificate validation vulnerability in NETGEAR Gaming Router and certain Nighthawk models","x_generator":{"engine":"Vulnogram 1.0.3"}}},"cveMetadata":{"assignerOrgId":"a2826606-91e7-4eb6-899e-8484bd4575d5","assignerShortName":"NETGEAR","cveId":"CVE-2026-62657","datePublished":"2026-07-14T17:46:13.757Z","dateReserved":"2026-07-14T16:31:02.508Z","dateUpdated":"2026-07-14T17:46:13.757Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-07-14 18:18:47","lastModifiedDate":"2026-07-14 18:18:47","problem_types":["CWE-599","CWE-599 CWE-599 Missing validation of OpenSSL certificate"],"metrics":{"cvssMetricV40":[{"source":"a2826606-91e7-4eb6-899e-8484bd4575d5","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"ADJACENT","attackComplexity":"HIGH","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"UNREPORTED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"AMBER"}}]},"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"62657","Ordinal":"1","Title":"Certificate validation vulnerability in NETGEAR Gaming Router an","CVE":"CVE-2026-62657","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"62657","Ordinal":"1","NoteData":"A security flaw in the router's certificate validation process was\ndiscovered in the NETGEAR XR1000 Gaming Router and certain Nighthawk models that could allow an unauthorized person to remotely access and take\ncontrol of the device.","Type":"Description","Title":"Certificate validation vulnerability in NETGEAR Gaming Router an"}]}}}