× Introducing the Orbi 970 Series Mesh System with WiFi 7 technology. For more information visit the NETGEAR Press Room.
Orbi WiFi 7 RBE973
Reply

Nighthawk RAX40 security setup is terrible

Jackyx123
Aspirant

Nighthawk RAX40 security setup is terrible

I am interest in information security, and I brought a AX4 router.

 

I turned off Remote Management setting and want to ensure internet could not access my web management interface.

The setting pages shows it should be port 8443.

Anyway, I just turn off this function.

 

And, I did a port scan from internet to my router.

I found lots of interesting ports are open!!!

Some port are  using https.

 

for example, port 58631.

 

I connected to this port by https....it show a login page.

 

okay, i tried to login by my credential...

 

success...this is a remote management port.....

 

It should be turn off!!!!!

 

okay, I use the block service, block this port, for all IP, always..

 

The block function doesn't work!! I can still connect to port 58631..

 

It seems this router are full of vulnerability and backdoor

 

How come netgear would allow this things happen?

 

Message 1 of 4
Jackyx123
Aspirant

Re: Nighthawk RAX40 security setup is terrible

Firmware Version V1.0.3.64_1.0.1

 

I tested with the latest firmware

Message 2 of 4
Jackyx123
Aspirant

Re: Nighthawk RAX40 security setup is terrible

I reboot my router.

The remote management port change to another port 4XXXX.

 

It is definitely a backdoor....

Message 3 of 4
Christian_R
NETGEAR Employee Retired

Re: Nighthawk RAX40 security setup is terrible

Hi Jackyx123, 

 

Welcome to the community! I recommend contacting our Support Team to assist in ensuring your router is secured. 

 

https://www.netgear.com/support/default.aspx

 

Christian 

Message 4 of 4
Top Contributors
Discussion stats
  • 3 replies
  • 1324 views
  • 0 kudos
  • 2 in conversation
Announcements

Orbi WiFi 7