Search criteria
5 vulnerabilities found for RAX42 by NETGEAR
CVE-2026-0418 (GCVE-0-2026-0418)
Vulnerability from cvelistv5 – Published: 2026-06-09 15:50 – Updated: 2026-06-09 17:09
VLAI?
Title
Certain NETGEAR devices allow administrators to tamper with system
Summary
Insufficient configuration management in the listed devices allows authenticated administrators connected to the local network
to tamper with the system.
Severity ?
CWE
- CWE-15 - External control of system or configuration setting
Assigner
References
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| NETGEAR | CBR750 |
Affected:
0 , < v4.6.14.4
(custom)
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Credits
byte_blaster
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-0418",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-06-09T17:08:11.783284Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-06-09T17:09:21.456Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "CBR750",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "v4.6.14.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "EX6120",
"vendor": "NETGEAR",
"versions": [
{
"lessThanOrEqual": "1.0.0.72",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "EX6130",
"vendor": "NETGEAR",
"versions": [
{
"lessThanOrEqual": "1.0.0.54",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MR60",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.128",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MR70",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.3.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MR80",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.6",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MS60",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.128",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MS70",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.3.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MS80",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.6",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX15",
"vendor": "NETGEAR",
"versions": [
{
"lessThanOrEqual": "1.0.18.144",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX20",
"vendor": "NETGEAR",
"versions": [
{
"lessThanOrEqual": "1.0.18.144",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX200",
"vendor": "NETGEAR",
"versions": [
{
"lessThanOrEqual": "1.0.11.148",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX35v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.112",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX38v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.112",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX40v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.112",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX42",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.112",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX43",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.112",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX45",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.112",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX48",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.112",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX50",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.112",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX50S",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.112",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX75",
"vendor": "NETGEAR",
"versions": [
{
"lessThanOrEqual": "1.0.11.148",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX80",
"vendor": "NETGEAR",
"versions": [
{
"lessThanOrEqual": "1.0.11.148",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAXE450",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.10.86",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAXE500",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.10.86",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBR750",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V4.6.14.3",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBR840",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V4.6.14.3",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBR850",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V4.6.14.3",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBRE960",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V6.3.7.5",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBS750",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V4.6.14.3",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBS840",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V4.6.14.3",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBS850",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V4.6.14.3",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBSE960",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V6.3.7.5",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RS700",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.7.66",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "XR1000",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "v1.0.0.68",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "byte_blaster"
}
],
"datePublic": "2026-06-09T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cspan\u003e\u003cspan\u003eInsufficient configuration management in the listed devices\u0026nbsp;\u003c/span\u003e\u003c/span\u003e\u003cspan\u003eallows authenticated administrators connected to the local network\n\u003c/span\u003e\u003cspan\u003eto tamper with the system.\u003c/span\u003e\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cp\u003e\u003cbr\u003e\u003c/p\u003e"
}
],
"value": "Insufficient configuration management in the listed devices\u00a0allows authenticated administrators connected to the local network\nto tamper with the system."
}
],
"impacts": [
{
"capecId": "CAPEC-184",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-184 Software Integrity Attack"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "USER",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "ADJACENT",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"exploitMaturity": "UNREPORTED",
"privilegesRequired": "HIGH",
"providerUrgency": "AMBER",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "DIFFUSE",
"vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/R:U/V:D/RE:L/U:Amber",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "LOW"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-15",
"description": "CWE-15 External control of system or configuration setting",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-09T15:50:50.069Z",
"orgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"shortName": "NETGEAR"
},
"references": [
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/cbr750/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax15/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ex6120/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax200/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax38v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax75/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/mr60/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax80/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbr840/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbr750/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbs750/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ex6130/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbr850/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbs840/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbs850/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ms60/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rs700/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/mr70/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/mr80/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ms70/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax35v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax20/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ms80/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax40v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax42/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax43/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax50/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/raxe500/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax48/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax50s/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbse960/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/raxe450/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax45/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbre960/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/xr1000/"
}
],
"solutions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003e\u003cspan\u003eNETGEAR strongly recommends that you install the\nlatest firmware as soon as possible.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan\u003eIssue f\u003c/span\u003e\u003cspan\u003eixed in:\u003c/span\u003e\u003c/p\u003e\u003ctable\u003e\u003cthead\u003e\u003ctr\u003e\u003cth\u003eProduct\u003c/th\u003e\u003cth\u003eFixed Version\u003c/th\u003e\u003c/tr\u003e\u003c/thead\u003e\u003ctbody\u003e\u003ctr\u003e\u003ctd\u003eCBR750\u003c/td\u003e\u003ctd\u003ev4.6.14.4\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eEX6120*\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eEX6130*\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMR60\u003c/td\u003e\u003ctd\u003eV1.1.7.128\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMR70\u003c/td\u003e\u003ctd\u003eV1.0.3.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMR80\u003c/td\u003e\u003ctd\u003eV1.1.7.6\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMS60\u003c/td\u003e\u003ctd\u003eV1.1.7.128\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMS70\u003c/td\u003e\u003ctd\u003eV1.0.3.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMS80\u003c/td\u003e\u003ctd\u003eV1.1.7.6\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX15*\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX20*\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX200*\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX35v2\u003c/td\u003e\u003ctd\u003eV1.0.11.112\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX38v2\u003c/td\u003e\u003ctd\u003eV1.0.11.112\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX40v2\u003c/td\u003e\u003ctd\u003eV1.0.11.112\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX42*\u003c/td\u003e\u003ctd\u003eV1.0.11.112\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX43*\u003c/td\u003e\u003ctd\u003eV1.0.11.112\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX45*\u003c/td\u003e\u003ctd\u003eV1.0.11.112\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX48\u003c/td\u003e\u003ctd\u003eV1.0.11.112\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX50\u003c/td\u003e\u003ctd\u003eV1.0.11.112\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX50S\u003c/td\u003e\u003ctd\u003eV1.0.11.112\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX75*\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX80*\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAXE450\u003c/td\u003e\u003ctd\u003eV1.0.10.86\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAXE500\u003c/td\u003e\u003ctd\u003eV1.0.10.86\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBR750\u003c/td\u003e\u003ctd\u003eV4.6.14.3\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBR840*\u003c/td\u003e\u003ctd\u003eV4.6.14.3\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBR850\u003c/td\u003e\u003ctd\u003eV4.6.14.3\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBRE960\u003c/td\u003e\u003ctd\u003eV6.3.7.5\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBS750\u003c/td\u003e\u003ctd\u003eV4.6.14.3\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBS840*\u003c/td\u003e\u003ctd\u003eV4.6.14.3\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBS850\u003c/td\u003e\u003ctd\u003eV4.6.14.3\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBSE960\u003c/td\u003e\u003ctd\u003eV6.3.7.5\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRS700\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rs700/\"\u003eV1.0.7.66\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eXR1000\u003c/td\u003e\u003ctd\u003ev1.0.0.68\u003c/td\u003e\u003c/tr\u003e\u003c/tbody\u003e\u003c/table\u003e\u003cp\u003e\u003cspan\u003e*\nModel has reached its End-of-Support phase and no future security updates are\nplanned. NETGEAR strongly recommends that you retire this device and upgrade to\na newer NETGEAR product for continued security support.\u003c/span\u003e\u003c/p\u003e"
}
],
"value": "NETGEAR strongly recommends that you install the\nlatest firmware as soon as possible.\n\n\n\nIssue fixed in:\n\nProductFixed VersionCBR750v4.6.14.4EX6120*EOSEX6130*EOSMR60V1.1.7.128MR70V1.0.3.28MR80V1.1.7.6MS60V1.1.7.128MS70V1.0.3.28MS80V1.1.7.6RAX15*EOSRAX20*EOSRAX200*EOSRAX35v2V1.0.11.112RAX38v2V1.0.11.112RAX40v2V1.0.11.112RAX42*V1.0.11.112RAX43*V1.0.11.112RAX45*V1.0.11.112RAX48V1.0.11.112RAX50V1.0.11.112RAX50SV1.0.11.112RAX75*EOSRAX80*EOSRAXE450V1.0.10.86RAXE500V1.0.10.86RBR750V4.6.14.3RBR840*V4.6.14.3RBR850V4.6.14.3RBRE960V6.3.7.5RBS750V4.6.14.3RBS840*V4.6.14.3RBS850V4.6.14.3RBSE960V6.3.7.5RS700 V1.0.7.66 https://www.netgear.com/support/product/rs700/ XR1000v1.0.0.68\n\n*\nModel has reached its End-of-Support phase and no future security updates are\nplanned. NETGEAR strongly recommends that you retire this device and upgrade to\na newer NETGEAR product for continued security support."
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Certain NETGEAR devices allow administrators to tamper with system",
"x_generator": {
"engine": "Vulnogram 1.0.3"
}
}
},
"cveMetadata": {
"assignerOrgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"assignerShortName": "NETGEAR",
"cveId": "CVE-2026-0418",
"datePublished": "2026-06-09T15:50:50.069Z",
"dateReserved": "2025-12-03T04:16:25.029Z",
"dateUpdated": "2026-06-09T17:09:21.456Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-0417 (GCVE-0-2026-0417)
Vulnerability from cvelistv5 – Published: 2026-06-09 15:50 – Updated: 2026-06-09 17:10
VLAI?
Title
Insufficient input validation in certain NETGEAR routers
Summary
Insufficient input validation vulnerability in NETGEAR devices allows
authenticated administrators connected to the local network to tamper with
the router's integrity.
Severity ?
CWE
- CWE-20 - Improper input validation
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| NETGEAR | MR60 |
Affected:
0 , < V1.1.7.132
(custom)
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Credits
pjqwudi
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-0417",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-06-09T17:10:42.291794Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-06-09T17:10:51.031Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "MR60",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.132",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MR70",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.3.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MR80",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.14",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MS60",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.132",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MS70",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.3.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MS80",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.14",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R6400v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.4.128",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R6700v3",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.4.128",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R6900P",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.3.3.152",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R7000",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.216",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R7000P",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.3.3.152",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R7960P",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.4.4.92",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R8000P",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.4.4.92",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R8500",
"vendor": "NETGEAR",
"versions": [
{
"lessThanOrEqual": "1.0.2.160",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX20",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.18.144",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX35v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "TBD",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX40v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.118",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX41",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.118",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX42",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.118",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX43",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.120",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX45",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.118",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX48",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.118",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX50",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.120",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX50S",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.120",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAXE450",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.10.86",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAXE500",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.10.86",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "XR1000",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.0.68",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "pjqwudi"
}
],
"datePublic": "2026-06-09T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003eInsufficient input validation vulnerability in NETGEAR\u0026nbsp;devices\u0026nbsp;allows\nauthenticated administrators connected to the local network to\u0026nbsp;tamper with\nthe router\u0027s integrity. \u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cp\u003e\u003cbr\u003e\u003c/p\u003e"
}
],
"value": "Insufficient input validation vulnerability in NETGEAR\u00a0devices\u00a0allows\nauthenticated administrators connected to the local network to\u00a0tamper with\nthe router\u0027s integrity."
}
],
"impacts": [
{
"capecId": "CAPEC-122",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-122 Privilege Abuse"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "ADJACENT",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"exploitMaturity": "UNREPORTED",
"privilegesRequired": "HIGH",
"providerUrgency": "AMBER",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "DIFFUSE",
"vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/V:D/RE:L/U:Amber",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "LOW"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20 Improper input validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-09T15:50:49.507Z",
"orgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"shortName": "NETGEAR"
},
"references": [
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/mr70/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/mr80/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/mr60/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ms60/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ms80/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r6400v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ms70/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r6700v3/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r7000/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r6900p/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r8000p/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r8500/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax40v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax42/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax35v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax41/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax20/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax43/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r7960p/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r7000p/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax45/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax48/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/raxe450/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax50s/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/xr1000/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax50/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/raxe500/"
}
],
"solutions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eNETGEAR strongly recommends that you install the\nlatest firmware as soon as possible.\u0026nbsp;\u003c/p\u003e\u003cp\u003eIssue fixed in:\u003c/p\u003e\u003cdiv\u003e\u003ctable\u003e\u003cthead\u003e\u003ctr\u003e\u003cth\u003eProduct\u003c/th\u003e\u003cth\u003eFixed Version\u003c/th\u003e\u003c/tr\u003e\u003c/thead\u003e\u003ctbody\u003e\u003ctr\u003e\u003ctd\u003eMR60\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.1.7.132\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMR70\u003c/td\u003e\u003ctd\u003eV1.0.3.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMR80\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.1.7.14\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMS60\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.1.7.132\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMS70\u003c/td\u003e\u003ctd\u003eV1.0.3.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMS80\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.1.7.14\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR6400v2*\u003c/td\u003e\u003ctd\u003eV1.0.4.128\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR6700v3*\u003c/td\u003e\u003ctd\u003eV1.0.4.128\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR6900P*\u003c/td\u003e\u003ctd\u003eV1.3.3.152\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR7000*\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.0.11.216\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR7000P*\u003c/td\u003e\u003ctd\u003eV1.3.3.152\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR7960P*\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.4.4.92\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR8000P*\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.4.4.92\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR8500*\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX20*\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax20/\"\u003eV1.0.18.144\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX35v2\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.0.12.118\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX40v2\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.0.12.118\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX41*\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.0.12.118\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX42*\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.0.12.118\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX43*\u003c/td\u003e\u003ctd\u003eV1.0.12.120\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX45*\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.0.12.118\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX48\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.0.12.118\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX50\u003c/td\u003e\u003ctd\u003eV1.0.12.120\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX50S\u003c/td\u003e\u003ctd\u003eV1.0.12.120\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAXE450\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.0.10.86\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAXE500\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.0.10.86\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eXR1000\u003c/td\u003e\u003ctd\u003e\u003cspan\u003eV1.0.0.68\u003c/span\u003e\u003c/td\u003e\u003c/tr\u003e\u003c/tbody\u003e\u003c/table\u003e\u003c/div\u003e\u003cdiv\u003e* Model has reached its End-of-Support phase and\nno future security updates are planned. NETGEAR strongly recommends that you\nretire this device and upgrade to a newer NETGEAR product for continued\nsecurity support.\u003c/div\u003e"
}
],
"value": "NETGEAR strongly recommends that you install the\nlatest firmware as soon as possible.\u00a0\n\n\n\nIssue fixed in:\n\nProductFixed VersionMR60V1.1.7.132MR70V1.0.3.28MR80V1.1.7.14MS60V1.1.7.132MS70V1.0.3.28MS80V1.1.7.14R6400v2*V1.0.4.128R6700v3*V1.0.4.128R6900P*V1.3.3.152R7000*V1.0.11.216R7000P*V1.3.3.152R7960P*V1.4.4.92R8000P*V1.4.4.92R8500*EOSRAX20* V1.0.18.144 https://www.netgear.com/support/product/rax20/ RAX35v2V1.0.12.118RAX40v2V1.0.12.118RAX41*V1.0.12.118RAX42*V1.0.12.118RAX43*V1.0.12.120RAX45*V1.0.12.118RAX48V1.0.12.118RAX50V1.0.12.120RAX50SV1.0.12.120RAXE450V1.0.10.86RAXE500V1.0.10.86XR1000V1.0.0.68\n\n* Model has reached its End-of-Support phase and\nno future security updates are planned. NETGEAR strongly recommends that you\nretire this device and upgrade to a newer NETGEAR product for continued\nsecurity support."
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Insufficient input validation in certain NETGEAR routers",
"x_generator": {
"engine": "Vulnogram 1.0.3"
}
}
},
"cveMetadata": {
"assignerOrgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"assignerShortName": "NETGEAR",
"cveId": "CVE-2026-0417",
"datePublished": "2026-06-09T15:50:49.507Z",
"dateReserved": "2025-12-03T04:16:24.254Z",
"dateUpdated": "2026-06-09T17:10:51.031Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-9210 (GCVE-0-2026-9210)
Vulnerability from cvelistv5 – Published: 2026-06-09 15:50 – Updated: 2026-06-09 18:39
VLAI?
Title
Certain NETGEAR routers allow authenticated administrators to gain unintended control of the router
Summary
Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.
Severity ?
CWE
- CWE-20 - Improper input validation
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| NETGEAR | EX3700 |
Affected:
0 , < V1.0.0.100
(custom)
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Credits
pjqwudi
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-9210",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-06-09T18:03:30.063423Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-06-09T18:39:39.151Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "EX3700",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.0.100",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "EX3800",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.0.100",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "EX6120",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.0.72",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "EX6130",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.0.54",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MR60",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.132",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MR70",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.3.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MR80",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.14",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MS60",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.132",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MS70",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.3.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MS80",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.7.14",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R6400v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.4.128",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R6700v3",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.4.128",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R6900P",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.3.3.152",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R7000",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.216",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R7000P",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.3.3.152",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R7960P",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.4.4.92",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R8000P",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.4.4.92",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "R8500",
"vendor": "NETGEAR",
"versions": [
{
"lessThanOrEqual": "1.0.2.160",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX20",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.18.144",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX35v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.118",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX40v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.118",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX41",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.118",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX42",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.118",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX43",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.120",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX45",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.118",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX48",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.118",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX50",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.120",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX50S",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.12.120",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAXE450",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.10.86",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAXE500",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.10.86",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "XR1000",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.0.68",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "pjqwudi"
}
],
"datePublic": "2026-06-09T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cp\u003eInsufficient input validation vulnerability in the\u0026nbsp;listed NETGEAR models allows\u0026nbsp;authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.\u003c/p\u003e\u003c/div\u003e"
}
],
"value": "Insufficient input validation vulnerability in the\u00a0listed NETGEAR models allows\u00a0authenticated administrators connected to the local network to make unauthorized modification of router software and functionality."
}
],
"impacts": [
{
"capecId": "CAPEC-122",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-122 Privilege Abuse"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "ADJACENT",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"exploitMaturity": "UNREPORTED",
"privilegesRequired": "NONE",
"providerUrgency": "AMBER",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "DIFFUSE",
"vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/V:D/RE:L/U:Amber",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "LOW"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20 Improper input validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-09T15:50:48.947Z",
"orgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"shortName": "NETGEAR"
},
"references": [
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ex3700/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ex3800/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ex6120/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/mr60/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ex6130/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ms70/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ms60/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/mr80/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ms80/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/mr70/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r6400v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r6700v3/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r6900p/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r7960p/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r7000p/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r8000p/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r8500/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax48/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r7000/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax40v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax20/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax35v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax41/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax42/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax45/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax50/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax43/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax50s/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/raxe450/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/raxe500/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/xr1000/"
}
],
"solutions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003e\u003cp\u003eNETGEAR strongly recommends that you install the latest firmware as soon as possible.\u003c/p\u003e\u003cp\u003eIssue fixed in:\u003c/p\u003e\u003c/div\u003e\u003cdiv\u003e\u003ctable\u003e\u003cthead\u003e\u003ctr\u003e\u003cth\u003eProduct\u003c/th\u003e\u003cth\u003eFixed Version\u003c/th\u003e\u003c/tr\u003e\u003c/thead\u003e\u003ctbody\u003e\u003ctr\u003e\u003ctd\u003eEX3700\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/ex3700/\"\u003eV1.0.0.100\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eEX3800*\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/ex3800/\"\u003eV1.0.0.100\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eEX6120\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/ex6120/\"\u003eV1.0.0.72\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eEX6130\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/ex6130/\"\u003eV1.0.0.54\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMR60\u003c/td\u003e\u003ctd\u003eV1.1.7.132\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMR70\u003c/td\u003e\u003ctd\u003eV1.0.3.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMR80\u003c/td\u003e\u003ctd\u003eV1.1.7.14\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMS60\u003c/td\u003e\u003ctd\u003eV1.1.7.132\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMS70\u003c/td\u003e\u003ctd\u003eV1.0.3.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eMS80\u003c/td\u003e\u003ctd\u003eV1.1.7.14\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR6400v2*\u003c/td\u003e\u003ctd\u003eV1.0.4.128\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR6700v3*\u003c/td\u003e\u003ctd\u003eV1.0.4.128\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR6900P*\u003c/td\u003e\u003ctd\u003eV1.3.3.152\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR7000*\u003c/td\u003e\u003ctd\u003eV1.0.11.216\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR7000P*\u003c/td\u003e\u003ctd\u003eV1.3.3.152\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR7960P*\u003c/td\u003e\u003ctd\u003eV1.4.4.92\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR8000P*\u003c/td\u003e\u003ctd\u003eV1.4.4.92\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eR8500*\u003c/td\u003e\u003ctd\u003eEoS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX20*\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax20/\"\u003eV1.0.18.144\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX35v2\u003c/td\u003e\u003ctd\u003eV1.0.12.118\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX40v2\u003c/td\u003e\u003ctd\u003eV1.0.12.118\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX41*\u003c/td\u003e\u003ctd\u003eV1.0.12.118\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX42*\u003c/td\u003e\u003ctd\u003eV1.0.12.118\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX43*\u003c/td\u003e\u003ctd\u003eV1.0.12.120\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX45*\u003c/td\u003e\u003ctd\u003eV1.0.12.118\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX48\u003c/td\u003e\u003ctd\u003eV1.0.12.118\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX50\u003c/td\u003e\u003ctd\u003eV1.0.12.120\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX50S\u003c/td\u003e\u003ctd\u003eV1.0.12.120\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAXE450\u003c/td\u003e\u003ctd\u003eV1.0.10.86\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAXE500\u003c/td\u003e\u003ctd\u003eV1.0.10.86\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eXR1000\u003c/td\u003e\u003ctd\u003eV1.0.0.68\u003c/td\u003e\u003c/tr\u003e\u003c/tbody\u003e\u003c/table\u003e\u003c/div\u003e\u003cdiv\u003e\u003cspan\u003e* Model has reached its End-of-Support\nphase and no future security updates are planned. NETGEAR strongly recommends\nthat you retire this device and upgrade to a newer NETGEAR product for\ncontinued security support.\u003c/span\u003e\u003c/div\u003e"
}
],
"value": "NETGEAR strongly recommends that you install the latest firmware as soon as possible.\n\n\n\nIssue fixed in:\n\n\n\nProductFixed VersionEX3700 V1.0.0.100 https://www.netgear.com/support/product/ex3700/ EX3800* V1.0.0.100 https://www.netgear.com/support/product/ex3800/ EX6120 V1.0.0.72 https://www.netgear.com/support/product/ex6120/ EX6130 V1.0.0.54 https://www.netgear.com/support/product/ex6130/ MR60V1.1.7.132MR70V1.0.3.28MR80V1.1.7.14MS60V1.1.7.132MS70V1.0.3.28MS80V1.1.7.14R6400v2*V1.0.4.128R6700v3*V1.0.4.128R6900P*V1.3.3.152R7000*V1.0.11.216R7000P*V1.3.3.152R7960P*V1.4.4.92R8000P*V1.4.4.92R8500*EoSRAX20* V1.0.18.144 https://www.netgear.com/support/product/rax20/ RAX35v2V1.0.12.118RAX40v2V1.0.12.118RAX41*V1.0.12.118RAX42*V1.0.12.118RAX43*V1.0.12.120RAX45*V1.0.12.118RAX48V1.0.12.118RAX50V1.0.12.120RAX50SV1.0.12.120RAXE450V1.0.10.86RAXE500V1.0.10.86XR1000V1.0.0.68\n\n* Model has reached its End-of-Support\nphase and no future security updates are planned. NETGEAR strongly recommends\nthat you retire this device and upgrade to a newer NETGEAR product for\ncontinued security support."
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Certain NETGEAR routers allow authenticated administrators to gain unintended control of the router",
"x_generator": {
"engine": "Vulnogram 1.0.3"
}
}
},
"cveMetadata": {
"assignerOrgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"assignerShortName": "NETGEAR",
"cveId": "CVE-2026-9210",
"datePublished": "2026-06-09T15:50:48.947Z",
"dateReserved": "2026-05-21T17:29:00.866Z",
"dateUpdated": "2026-06-09T18:39:39.151Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-0410 (GCVE-0-2026-0410)
Vulnerability from cvelistv5 – Published: 2026-06-09 15:41 – Updated: 2026-06-09 18:40
VLAI?
Title
Insufficient input validation in certain NETGEAR routers
Summary
Authenticated administrators connected to the local network can gain
elevated access to the router and make unauthorized changes to router
software and functionality.
Severity ?
CWE
- CWE-20 - Insufficient input validation
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Impacted products
| Vendor | Product | Version | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| NETGEAR | R7000 |
Affected:
0 , < V1.0.11.216
(custom)
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Credits
SmallS
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-0410",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-06-09T17:27:32.030390Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-06-09T18:40:24.087Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "R7000",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.11.216",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX20",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.18.144",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX35v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.16.132",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX41",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.16.132",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX41v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.4.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX42",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.16.132",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX42v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.4.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX43",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.16.132",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX43v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.4.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX45",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.16.132",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX49S",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.4.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX50",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.16.132",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX50S",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.16.132",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX50v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.4.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX54Sv2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.4.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX54v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.4.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAXE450",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.2.14.114",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAXE500",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.2.14.114",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "XR1000",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.0.22",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "XR1000v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.0.22",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "SmallS"
}
],
"datePublic": "2026-06-09T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003eAuthenticated administrators connected to the local network can gain \nelevated access to the router and make unauthorized changes to router \nsoftware and functionality.\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e"
}
],
"value": "Authenticated administrators connected to the local network can gain \nelevated access to the router and make unauthorized changes to router \nsoftware and functionality."
}
],
"impacts": [
{
"capecId": "CAPEC-122",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-122 Privilege Abuse"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "HIGH",
"attackRequirements": "NONE",
"attackVector": "ADJACENT",
"baseScore": 1.9,
"baseSeverity": "LOW",
"exploitMaturity": "UNREPORTED",
"privilegesRequired": "HIGH",
"providerUrgency": "AMBER",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "DIFFUSE",
"vectorString": "CVSS:4.0/AV:A/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/V:D/RE:L/U:Amber",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "LOW"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20 Insufficient input validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-09T15:41:47.808Z",
"orgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"shortName": "NETGEAR"
},
"references": [
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax20/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/r7000/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax35v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax41/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax41v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax42v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax42/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax43/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax43v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax45/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/raxe450/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax50s/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax50/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax54sv2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/xr1000/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/xr1000v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax50v2/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax49s/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/raxe500/"
}
],
"solutions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eNETGEAR strongly recommends that you install the\nlatest firmware as soon as possible.\u0026nbsp;\u003c/p\u003e\u003cp\u003eIssue f\u003cspan\u003eixed in:\u003c/span\u003e\u003c/p\u003e\u003cdiv\u003e\u003ctable\u003e\u003cthead\u003e\u003ctr\u003e\u003cth\u003eProduct\u003c/th\u003e\u003cth\u003eFixed Version\u003c/th\u003e\u003c/tr\u003e\u003c/thead\u003e\u003ctbody\u003e\u003ctr\u003e\u003ctd\u003eR7000*\u003c/td\u003e\u003ctd\u003eV1.0.11.216\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX20*\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax20/\"\u003eV1.0.18.144\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX35v2\u003c/td\u003e\u003ctd\u003eV1.0.16.132\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX41*\u003c/td\u003e\u003ctd\u003eV1.0.16.132\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX41v2\u003c/td\u003e\u003ctd\u003eV1.1.4.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX42*\u003c/td\u003e\u003ctd\u003eV1.0.16.132\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX42v2\u003c/td\u003e\u003ctd\u003eV1.1.4.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX43*\u003c/td\u003e\u003ctd\u003eV1.0.16.132\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX43v2\u003c/td\u003e\u003ctd\u003eV1.1.4.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX45*\u003c/td\u003e\u003ctd\u003eV1.0.16.132\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX49S\u003c/td\u003e\u003ctd\u003eV1.1.4.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX50\u003c/td\u003e\u003ctd\u003eV1.0.16.132\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX50S\u003c/td\u003e\u003ctd\u003eV1.0.16.132\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX50v2\u003c/td\u003e\u003ctd\u003eV1.1.4.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX54Sv2\u003c/td\u003e\u003ctd\u003eV1.1.4.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAX54v2\u003c/td\u003e\u003ctd\u003eV1.1.4.28\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAXE450\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/raxe450/\"\u003eV1.2.14.114\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRAXE500\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/raxe500/\"\u003eV1.2.14.114\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eXR1000\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/xr1000/\"\u003eV1.1.0.22\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eXR1000v2\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/xr1000v2/\"\u003eV1.1.0.22\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003c/tbody\u003e\u003c/table\u003e\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cspan\u003e* Model has reached its End-of-Support phase and\nno future security updates are planned. NETGEAR strongly recommends that you\nretire this device and upgrade to a newer NETGEAR product for continued\nsecurity support.\u003c/span\u003e\u003c/div\u003e"
}
],
"value": "NETGEAR strongly recommends that you install the\nlatest firmware as soon as possible.\u00a0\n\n\n\nIssue fixed in:\n\nProductFixed VersionR7000*V1.0.11.216RAX20* V1.0.18.144 https://www.netgear.com/support/product/rax20/ RAX35v2V1.0.16.132RAX41*V1.0.16.132RAX41v2V1.1.4.28RAX42*V1.0.16.132RAX42v2V1.1.4.28RAX43*V1.0.16.132RAX43v2V1.1.4.28RAX45*V1.0.16.132RAX49SV1.1.4.28RAX50V1.0.16.132RAX50SV1.0.16.132RAX50v2V1.1.4.28RAX54Sv2V1.1.4.28RAX54v2V1.1.4.28RAXE450 V1.2.14.114 https://www.netgear.com/support/product/raxe450/ RAXE500 V1.2.14.114 https://www.netgear.com/support/product/raxe500/ XR1000 V1.1.0.22 https://www.netgear.com/support/product/xr1000/ XR1000v2 V1.1.0.22 https://www.netgear.com/support/product/xr1000v2/ \n\n\n* Model has reached its End-of-Support phase and\nno future security updates are planned. NETGEAR strongly recommends that you\nretire this device and upgrade to a newer NETGEAR product for continued\nsecurity support."
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Insufficient input validation in certain NETGEAR routers",
"x_generator": {
"engine": "Vulnogram 1.0.3"
}
}
},
"cveMetadata": {
"assignerOrgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"assignerShortName": "NETGEAR",
"cveId": "CVE-2026-0410",
"datePublished": "2026-06-09T15:41:47.808Z",
"dateReserved": "2025-12-03T04:16:17.013Z",
"dateUpdated": "2026-06-09T18:40:24.087Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-12946 (GCVE-0-2025-12946)
Vulnerability from cvelistv5 – Published: 2025-12-09 17:02 – Updated: 2026-02-26 16:57
VLAI?
Title
Improper input validation in NETGEAR Nighthawk routers
Summary
A vulnerability in the speedtest feature of affected NETGEAR Nighthawk routers, caused by improper input validation, can allow attackers on the router's WAN side, using attacker-in-the-middle techniques (MiTM) to manipulate DNS responses and execute commands when speedtests are run.
This issue affects RS700: through 1.0.7.82; RAX54Sv2 : before V1.1.6.36; RAX41v2: before V1.1.6.36; RAX50: before V1.2.14.114; RAXE500: before V1.2.14.114; RAX41: before V1.0.17.142; RAX43: before V1.0.17.142; RAX35v2: before V1.0.17.142; RAXE450: before V1.2.14.114; RAX43v2: before V1.1.6.36; RAX42: before V1.0.17.142; RAX45: before V1.0.17.142; RAX50v2: before V1.1.6.36; MR90: before V1.0.2.46; MS90: before V1.0.2.46; RAX42v2: before V1.1.6.36; RAX49S: before V1.1.6.36.
Severity ?
CWE
- CWE-20 - Improper Input Validation
Assigner
References
| URL | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| NETGEAR | RS700 |
Affected:
0 , ≤ 1.0.7.82
(custom)
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Credits
molybdenum
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-12946",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-10T04:57:23.602151Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-02-26T16:57:03.457Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"modules": [
"Speedtest"
],
"product": "RS700",
"vendor": "NETGEAR",
"versions": [
{
"lessThanOrEqual": "1.0.7.82",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX54Sv2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.6.36",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX41v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.6.36",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX50",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.2.14.114",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAXE500",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.2.14.114",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX41",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.17.142",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX43",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.17.142",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX35v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.17.142",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAXE450",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.2.14.114",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX43v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.6.36",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX42",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.17.142",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX45",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.17.142",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX50v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.6.36",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MR90",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.2.46",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX42v2",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.6.36",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RAX49S",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.1.6.36",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "MS90",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V1.0.2.46",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rs700:*:*:*:*:*:*:*:*",
"versionEndIncluding": "1.0.7.82",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax54sv2:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.1.6.36",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax41v2:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.1.6.36",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax50:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.2.14.114",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:raxe500:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.2.14.114",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax41:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.0.17.142",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax43:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.0.17.142",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax35v2:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.0.17.142",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:raxe450:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.2.14.114",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax43v2:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.1.6.36",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax42:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.0.17.142",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax45:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.0.17.142",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax50v2:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.1.6.36",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:mr90:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.0.2.46",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax42v2:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.1.6.36",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:rax49s:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.1.6.36",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:netgear:ms90:*:*:*:*:*:*:*:*",
"versionEndExcluding": "v1.0.2.46",
"versionStartIncluding": "0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "OR"
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "molybdenum"
}
],
"datePublic": "2025-12-09T17:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003e\u003c/p\u003e\u003cdiv\u003e\u003cdiv\u003e\u003cp\u003e\u003c/p\u003e\u003cdiv\u003e\u003cdiv\u003e\u003cp\u003eA vulnerability in the speedtest feature of affected NETGEAR Nighthawk routers, caused by improper input validation, can allow attackers on the router\u0027s WAN side, using attacker-in-the-middle techniques (MiTM) to manipulate DNS responses and execute commands when speedtests are run. \u003c/p\u003e\u003c/div\u003e\u003cdiv\u003e\u003cp\u003eThis issue affects RS700: through 1.0.7.82; RAX54Sv2 : before V1.1.6.36; RAX41v2: before V1.1.6.36; RAX50: before V1.2.14.114; RAXE500: before V1.2.14.114; RAX41: before V1.0.17.142; RAX43: before V1.0.17.142; RAX35v2: before V1.0.17.142; RAXE450: before V1.2.14.114; RAX43v2: before V1.1.6.36; RAX42: before V1.0.17.142; RAX45: before V1.0.17.142; RAX50v2: before V1.1.6.36; MR90: before V1.0.2.46; MS90: before V1.0.2.46;\u202fRAX42v2: before V1.1.6.36; RAX49S: before V1.1.6.36. \u003c/p\u003e\u003c/div\u003e\u003c/div\u003e\u003cp\u003e\u003c/p\u003e\u003c/div\u003e\u003c/div\u003e\u003cbr\u003e\u003cp\u003e\u003c/p\u003e"
}
],
"value": "A vulnerability in the speedtest feature of affected NETGEAR Nighthawk routers, caused by improper input validation, can allow attackers on the router\u0027s WAN side, using attacker-in-the-middle techniques (MiTM) to manipulate DNS responses and execute commands when speedtests are run. \n\n\n\nThis issue affects RS700: through 1.0.7.82; RAX54Sv2 : before V1.1.6.36; RAX41v2: before V1.1.6.36; RAX50: before V1.2.14.114; RAXE500: before V1.2.14.114; RAX41: before V1.0.17.142; RAX43: before V1.0.17.142; RAX35v2: before V1.0.17.142; RAXE450: before V1.2.14.114; RAX43v2: before V1.1.6.36; RAX42: before V1.0.17.142; RAX45: before V1.0.17.142; RAX50v2: before V1.1.6.36; MR90: before V1.0.2.46; MS90: before V1.0.2.46;\u202fRAX42v2: before V1.1.6.36; RAX49S: before V1.1.6.36."
}
],
"impacts": [
{
"capecId": "CAPEC-248",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-248 Command Injection"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NO",
"Recovery": "AUTOMATIC",
"Safety": "NEGLIGIBLE",
"attackComplexity": "HIGH",
"attackRequirements": "PRESENT",
"attackVector": "ADJACENT",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"exploitMaturity": "UNREPORTED",
"privilegesRequired": "NONE",
"providerUrgency": "AMBER",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "ACTIVE",
"valueDensity": "DIFFUSE",
"vectorString": "CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/S:N/AU:N/R:A/V:D/RE:M/U:Amber",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "MODERATE"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20 Improper Input Validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-09T19:35:39.538Z",
"orgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"shortName": "NETGEAR"
},
"references": [
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rs700"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax54sv2"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax41v2"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/RAX50"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/raxe500"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax41"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax43"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax35v2"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/raxe450"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax43v2"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax42"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax45"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax50v2"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/mr90"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/ms90"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax42v2"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rax49s"
},
{
"tags": [
"vendor-advisory"
],
"url": "https://kb.netgear.com/000070416/December-2025-NETGEAR-Security-Advisory"
}
],
"solutions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eDevices with automatic updates enabled may already have\nthis patch applied. If not, please check the firmware version and update it to\nthe latest.\u003cbr\u003e\n\u003cbr\u003e\n\u003c/p\u003e\n\n\u003cp\u003eFixed in:\u003c/p\u003e\u003cp\u003eRS700 firmware V1.0.9.6 or later\u003c/p\u003e\u003cp\u003eRAX54Sv2/RAX45v2\u0026nbsp;\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rax54sv2\"\u003efirmware\u0026nbsp;V1.1.6.36 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAX41v2\u0026nbsp;\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rax41v2\"\u003efirmware V1.1.6.36 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAX50\u0026nbsp;\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/RAX50\"\u003efirmware V1.2.14.114 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAXE500\u0026nbsp;\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/raxe500\"\u003efirmware V1.2.14.114\u0026nbsp;or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAX41 \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rax41\"\u003efirmware V1.0.17.142 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAX43 \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rax43\"\u003efirmware V1.0.17.142 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAX35v2 \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/RAX35v2\"\u003efirmware V1.0.17.142 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAXE450 \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/RAXE450\"\u003efirmware V1.0.17.142 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAX43v2 \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/RAX43v2\"\u003efirmware V1.1.6.36 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAX42 \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/RAX42\"\u003efirmware V1.0.17.142 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAX45\u0026nbsp;\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/RAX45\"\u003efirmware V1.0.17.142 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAX50v2 \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/RAX50v2\"\u003efirmware V1.1.6.36 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eMR90 \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/MR90\"\u003efirmware V1.0.2.46 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eMS90 \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/MS90\"\u003efirmware V1.0.2.46 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAX42v2 \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/RAX42v2\"\u003efirmware V1.1.6.36 or later\u003c/a\u003e\u003c/p\u003e\u003cp\u003eRAX49S \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/RAX42v2\"\u003efirmware V1.1.6.36 or later\u003c/a\u003e\u003cbr\u003e\u003c/p\u003e"
}
],
"value": "Devices with automatic updates enabled may already have\nthis patch applied. If not, please check the firmware version and update it to\nthe latest.\n\n\n\n\n\n\n\nFixed in:\n\nRS700 firmware V1.0.9.6 or later\n\nRAX54Sv2/RAX45v2\u00a0 firmware\u00a0V1.1.6.36 or later https://www.netgear.com/support/product/rax54sv2 \n\nRAX41v2\u00a0 firmware V1.1.6.36 or later https://www.netgear.com/support/product/rax41v2 \n\nRAX50\u00a0 firmware V1.2.14.114 or later https://www.netgear.com/support/product/RAX50 \n\nRAXE500\u00a0 firmware V1.2.14.114\u00a0or later https://www.netgear.com/support/product/raxe500 \n\nRAX41 firmware V1.0.17.142 or later https://www.netgear.com/support/product/rax41 \n\nRAX43 firmware V1.0.17.142 or later https://www.netgear.com/support/product/rax43 \n\nRAX35v2 firmware V1.0.17.142 or later https://www.netgear.com/support/product/RAX35v2 \n\nRAXE450 firmware V1.0.17.142 or later https://www.netgear.com/support/product/RAXE450 \n\nRAX43v2 firmware V1.1.6.36 or later https://www.netgear.com/support/product/RAX43v2 \n\nRAX42 firmware V1.0.17.142 or later https://www.netgear.com/support/product/RAX42 \n\nRAX45\u00a0 firmware V1.0.17.142 or later https://www.netgear.com/support/product/RAX45 \n\nRAX50v2 firmware V1.1.6.36 or later https://www.netgear.com/support/product/RAX50v2 \n\nMR90 firmware V1.0.2.46 or later https://www.netgear.com/support/product/MR90 \n\nMS90 firmware V1.0.2.46 or later https://www.netgear.com/support/product/MS90 \n\nRAX42v2 firmware V1.1.6.36 or later https://www.netgear.com/support/product/RAX42v2 \n\nRAX49S firmware V1.1.6.36 or later https://www.netgear.com/support/product/RAX42v2"
}
],
"source": {
"discovery": "UNKNOWN"
},
"timeline": [
{
"lang": "en",
"time": "2025-12-09T16:00:00.000Z",
"value": "published"
}
],
"title": "Improper input validation in NETGEAR Nighthawk routers",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"assignerShortName": "NETGEAR",
"cveId": "CVE-2025-12946",
"datePublished": "2025-12-09T17:02:20.739Z",
"dateReserved": "2025-11-10T08:26:32.586Z",
"dateUpdated": "2026-02-26T16:57:03.457Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}