4.3

CVE-2026-0417

Insufficient input validation in certain NETGEAR routers

Insufficient input validation vulnerability in the listed NETGEAR devices allows
authenticated administrators connected to the local network to tamper with
the router's integrity.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerNETGEAR
Produkt MR60
Default Statusunaffected
Version 0
Version < V1.1.7.132
Status affected
HerstellerNETGEAR
Produkt MR70
Default Statusunaffected
Version 0
Version < V1.0.3.28
Status affected
HerstellerNETGEAR
Produkt MR80
Default Statusunaffected
Version 0
Version < V1.1.7.14
Status affected
HerstellerNETGEAR
Produkt MS60
Default Statusunaffected
Version 0
Version < V1.1.7.132
Status affected
HerstellerNETGEAR
Produkt MS70
Default Statusunaffected
Version 0
Version < V1.0.3.28
Status affected
HerstellerNETGEAR
Produkt MS80
Default Statusunaffected
Version 0
Version < V1.1.7.14
Status affected
HerstellerNETGEAR
Produkt R6400v2
Default Statusunaffected
Version 0
Version < V1.0.4.128
Status affected
HerstellerNETGEAR
Produkt R6700v3
Default Statusunaffected
Version 0
Version < V1.0.4.128
Status affected
HerstellerNETGEAR
Produkt R6900P
Default Statusunaffected
Version 0
Version < V1.3.3.152
Status affected
HerstellerNETGEAR
Produkt R7000
Default Statusunaffected
Version 0
Version < V1.0.11.216
Status affected
HerstellerNETGEAR
Produkt R7000P
Default Statusunaffected
Version 0
Version < V1.3.3.152
Status affected
HerstellerNETGEAR
Produkt R7960P
Default Statusunaffected
Version 0
Version < V1.4.4.92
Status affected
HerstellerNETGEAR
Produkt R8000P
Default Statusunaffected
Version 0
Version < V1.4.4.92
Status affected
HerstellerNETGEAR
Produkt R8500
Default Statusunaffected
Version <= 1.0.2.160
Version 0
Status affected
HerstellerNETGEAR
Produkt RAX20
Default Statusunaffected
Version 0
Version < V1.0.18.144
Status affected
HerstellerNETGEAR
Produkt RAX35v2
Default Statusunaffected
Version 0
Version < V1.0.16.132
Status affected
HerstellerNETGEAR
Produkt RAX40v2
Default Statusunaffected
Version 0
Version < V1.0.12.118
Status affected
HerstellerNETGEAR
Produkt RAX41
Default Statusunaffected
Version 0
Version < V1.0.12.118
Status affected
HerstellerNETGEAR
Produkt RAX42
Default Statusunaffected
Version 0
Version < V1.0.12.118
Status affected
HerstellerNETGEAR
Produkt RAX43
Default Statusunaffected
Version 0
Version < V1.0.12.120
Status affected
HerstellerNETGEAR
Produkt RAX45
Default Statusunaffected
Version 0
Version < V1.0.12.118
Status affected
HerstellerNETGEAR
Produkt RAX48
Default Statusunaffected
Version 0
Version < V1.0.12.118
Status affected
HerstellerNETGEAR
Produkt RAX50
Default Statusunaffected
Version 0
Version < V1.0.12.120
Status affected
HerstellerNETGEAR
Produkt RAX50S
Default Statusunaffected
Version 0
Version < V1.0.12.120
Status affected
HerstellerNETGEAR
Produkt RAXE450
Default Statusunaffected
Version 0
Version < V1.0.10.86
Status affected
HerstellerNETGEAR
Produkt RAXE500
Default Statusunaffected
Version 0
Version < V1.0.10.86
Status affected
HerstellerNETGEAR
Produkt XR1000
Default Statusunaffected
Version 0
Version < V1.0.0.68
Status affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.23% 0.135
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
a2826606-91e7-4eb6-899e-8484bd4575d5 4.3 0 0
CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:D/RE:L/U:Amber
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://www.netgear.com/support/product/rax20/
https://www.netgear.com/support/product/r7000/
https://www.netgear.com/support/product/rax35v2/
https://www.netgear.com/support/product/rax41/
https://www.netgear.com/support/product/rax42/
https://www.netgear.com/support/product/rax43/
https://www.netgear.com/support/product/rax45/
https://www.netgear.com/support/product/raxe450/
https://www.netgear.com/support/product/rax50s/
https://www.netgear.com/support/product/rax50/
https://www.netgear.com/support/product/xr1000/
https://www.netgear.com/support/product/raxe500/
https://www.netgear.com/support/product/mr70/
https://www.netgear.com/support/product/mr80/
https://www.netgear.com/support/product/mr60/
https://www.netgear.com/support/product/ms60/
https://www.netgear.com/support/product/ms80/
https://www.netgear.com/support/product/r6400v2/
https://www.netgear.com/support/product/ms70/
https://www.netgear.com/support/product/r6700v3/
https://www.netgear.com/support/product/r6900p/
https://www.netgear.com/support/product/r8000p/
https://www.netgear.com/support/product/r8500/
https://www.netgear.com/support/product/rax40v2/
https://www.netgear.com/support/product/r7960p/
https://www.netgear.com/support/product/r7000p/
https://www.netgear.com/support/product/rax48/
https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory