8
CVE-2026-0403
- EPSS 0.08%
- Veröffentlicht 13.01.2026 16:16:10
- Zuletzt bearbeitet 20.02.2026 19:38:39
- Quelle a2826606-91e7-4eb6-899e-8484bd
- CVE-Watchlists
- Unerledigt
Insufficient input validation in NETGEAR Orbi routers
An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Netgear ≫ Rbe971 Firmware Version < 9.10.0.2
Netgear ≫ Rbe970 Firmware Version < 9.10.0.2
Netgear ≫ Rbr750 Firmware Version < 7.2.8.5
Netgear ≫ Rbr850 Firmware Version < 7.2.8.5
Netgear ≫ Rbr860 Firmware Version < 7.2.8.5
Netgear ≫ Rbs750 Firmware Version < 7.2.8.5
Netgear ≫ Rbs850 Firmware Version < 7.2.8.5
Netgear ≫ Rbs860 Firmware Version < 7.2.8.5
Netgear ≫ Rbre960 Firmware Version < 7.2.8.5
Netgear ≫ Rbse960 Firmware Version < 7.2.8.5
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.08% | 0.242 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8 | 2.1 | 5.9 |
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| a2826606-91e7-4eb6-899e-8484bd4575d5 | 1.1 | 0 | 0 |
CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.