6.1
CVE-2026-0405
- EPSS 0.2%
- Veröffentlicht 13.01.2026 16:16:10
- Zuletzt bearbeitet 14.01.2026 16:26:00
- Quelle a2826606-91e7-4eb6-899e-8484bd
- CVE-Watchlists
- Unerledigt
An authentication bypass vulnerability in NETGEAR Orbi devices allows users connected to the local network to access the router web interface as an admin.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
LoginDaten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerNETGEAR
≫
Produkt
RBE970
Default Statusunaffected
Version <
v9.13.2.1
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBE971
Default Statusunaffected
Version <
v9.13.2.1
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
CBR750
Default Statusunaffected
Version <
V4.6.14.8
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
NBR750
Default Statusunaffected
Version <
V4.6.15.14
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBE770
Default Statusunaffected
Version <
v10.5.20.7
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBE771
Default Statusunaffected
Version <
v10.5.20.7
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBE772
Default Statusunaffected
Version <
v10.5.20.7
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBE773
Default Statusunaffected
Version <
v10.5.20.7
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBR750
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBS750
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBR840
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBS840
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBR850
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBS850
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBR860
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBS860
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBRE950
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBSE950
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBRE960
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBSE960
Default Statusunaffected
Version <
v7.2.8.2
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBE370
Default Statusunaffected
Version <
v12.1.3.11
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBE371
Default Statusunaffected
Version <
v12.1.3.11
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBE372
Default Statusunaffected
Version <
v12.1.3.11
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBE373
Default Statusunaffected
Version <
v12.1.3.11
Version
0
Status
affected
HerstellerNETGEAR
≫
Produkt
RBE374
Default Statusunaffected
Version <
v12.1.3.11
Version
0
Status
affected
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.2% | 0.425 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| a2826606-91e7-4eb6-899e-8484bd4575d5 | 6.1 | 0 | 0 |
CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.