7.8

CVE-2026-0405

Authentication Bypass in NETGEAR Orbi Devices

An authentication bypass vulnerability in NETGEAR Orbi devices allows 
users connected to the local network to access the router web interface 
as an admin.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
NetgearCbr750 Firmware Version < 4.6.14.8
   NetgearCbr750 Version-
NetgearNbr750 Firmware Version < 4.6.15.14
   NetgearNbr750 Version-
NetgearRbe370 Firmware Version < 12.1.3.11
   NetgearRbe370 Version-
NetgearRbe371 Firmware Version < 12.1.3.11
   NetgearRbe371 Version-
NetgearRbe372 Firmware Version < 12.1.3.11
   NetgearRbe372 Version-
NetgearRbe373 Firmware Version < 12.1.3.11
   NetgearRbe373 Version-
NetgearRbe374 Firmware Version < 12.1.3.11
   NetgearRbe374 Version-
NetgearRbe770 Firmware Version < 10.5.20.7
   NetgearRbe770 Version-
NetgearRbe771 Firmware Version < 10.5.20.7
   NetgearRbe771 Version-
NetgearRbe772 Firmware Version < 10.5.20.7
   NetgearRbe772 Version-
NetgearRbe773 Firmware Version < 10.5.20.7
   NetgearRbe773 Version-
NetgearRbe970 Firmware Version < 9.13.2.1
   NetgearRbe970 Version-
NetgearRbe971 Firmware Version < 9.13.2.1
   NetgearRbe971 Version-
NetgearRbr750 Firmware Version < 7.2.8.2
   NetgearRbr750 Version-
NetgearRbr840 Firmware Version < 7.2.8.2
   NetgearRbr840 Version-
NetgearRbr850 Firmware Version < 7.2.8.2
   NetgearRbr850 Version-
NetgearRbr860 Firmware Version < 7.2.8.2
   NetgearRbr860 Version-
NetgearRbs750 Firmware Version < 7.2.8.2
   NetgearRbs750 Version-
NetgearRbs840 Firmware Version < 7.2.8.2
   NetgearRbs840 Version-
NetgearRbs850 Firmware Version < 7.2.8.2
   NetgearRbs850 Version-
NetgearRbs860 Firmware Version < 7.2.8.2
   NetgearRbs860 Version-
NetgearRbre950 Firmware Version < 7.2.8.2
   NetgearRbre950 Version-
NetgearRbre960 Firmware Version < 7.2.8.2
   NetgearRbre960 Version-
NetgearRbse950 Firmware Version < 7.2.8.2
   NetgearRbse950 Version-
NetgearRbse960 Firmware Version < 7.2.8.2
   NetgearRbse960 Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.33% 0.245
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
a2826606-91e7-4eb6-899e-8484bd4575d5 6.1 0 0
CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber
CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

https://www.netgear.com/support/product/rbe970
Patch
Product
https://www.netgear.com/support/product/rbe971
Patch
Product
https://www.netgear.com/support/product/rbr750
Patch
Product
https://www.netgear.com/support/product/rbr850
Patch
Product
https://www.netgear.com/support/product/rbr860
Patch
Product
https://www.netgear.com/support/product/rbre960
Patch
Product
https://www.netgear.com/support/product/rbs750
Patch
Product
https://www.netgear.com/support/product/rbs850
Patch
Product
https://www.netgear.com/support/product/rbs860
Patch
Product
https://www.netgear.com/support/product/rbse960
Patch
Product
https://www.netgear.com/support/product/rbr840
Patch
Product
https://www.netgear.com/support/product/rbre950
Patch
Product
https://www.netgear.com/support/product/rbs840
Patch
Product
https://www.netgear.com/support/product/rbse950
Patch
Product
https://www.netgear.com/support/product/cbr750
Patch
Product
https://www.netgear.com/support/product/nbr750
Patch
Product
https://www.netgear.com/support/product/rbe370
Patch
Product
https://www.netgear.com/support/product/rbe371
Patch
Product
https://www.netgear.com/support/product/rbe372
Patch
Product
https://www.netgear.com/support/product/rbe373
Patch
Product
https://www.netgear.com/support/product/rbe374
Patch
Product
https://www.netgear.com/support/product/rbe770
Patch
Product
https://www.netgear.com/support/product/rbe771
Patch
Product
https://www.netgear.com/support/product/rbe772
Patch
Product
https://www.netgear.com/support/product/rbe773
Patch
Product
https://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory
Patch
Vendor Advisory