4.3

CVE-2026-0415

Insufficient input validation vulnerability in certain Orbi routers

Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerNETGEAR
Produkt RBE970
Default Statusunaffected
Version 0
Version < V9.12.4.9
Status affected
HerstellerNETGEAR
Produkt RBR750
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
HerstellerNETGEAR
Produkt RBR840
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
HerstellerNETGEAR
Produkt RBR850
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
HerstellerNETGEAR
Produkt RBR860
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
HerstellerNETGEAR
Produkt RBRE950
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
HerstellerNETGEAR
Produkt RBRE960
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
HerstellerNETGEAR
Produkt RBS750
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
HerstellerNETGEAR
Produkt RBS840
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
HerstellerNETGEAR
Produkt RBS850
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
HerstellerNETGEAR
Produkt RBS860
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
HerstellerNETGEAR
Produkt RBSE950
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
HerstellerNETGEAR
Produkt RBSE960
Default Statusunaffected
Version 0
Version < V7.2.8.5
Status affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.23% 0.135
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
a2826606-91e7-4eb6-899e-8484bd4575d5 4.3 0 0
CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://www.netgear.com/support/product/rbe970/
https://www.netgear.com/support/product/rbr750/
https://www.netgear.com/support/product/rbr840/
https://www.netgear.com/support/product/rbre950/
https://www.netgear.com/support/product/rbr850/
https://www.netgear.com/support/product/rbre960/
https://www.netgear.com/support/product/rbr860/
https://www.netgear.com/support/product/rbse960/
https://www.netgear.com/support/product/rbs750/
https://www.netgear.com/support/product/rbse950/
https://www.netgear.com/support/product/rbs840/
https://www.netgear.com/support/product/rbs860/
https://www.netgear.com/support/product/rbs850/
https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory