GHSA-pqh9-6ffr-v5fcCriticalCVSS 8.1
NetComm NF20MESH routers running firmware R6B031 and earlier contain an authentication bypass...
🔗 CVE IDs covered (1)
📋 Description
NetComm NF20MESH routers running firmware R6B031 and earlier contain an authentication bypass vulnerability that allows unauthenticated attackers to gain administrative access by exploiting a hardcoded AES-256 key used to encrypt session cookies for the web management interface. Attackers can forge a valid encrypted session cookie using the shared hardcoded key and bypass authentication checks to obtain full administrative control of the management interface while any legitimate administrator session is active.
🔗 References (6)
- https://nvd.nist.gov/vuln/detail/CVE-2026-35019
- https://signal11.io/advisories/netcomm-nf20-mesh-authentication-bypass
- https://support.netcommwireless.com/api/Media/Firmware/4407c21d-e990-49a4-9754-b72475f20c76?Product=NF20MESH%20Release%20Notes.pdf
- https://support.netcommwireless.com/products/nf20mesh#Firmware
- https://www.vulncheck.com/advisories/netcomm-nf20mesh-r6b032-hardcoded-aes-key-authentication-bypass
- https://github.com/advisories/GHSA-pqh9-6ffr-v5fc