6.9
CVE-2026-9213
- EPSS 0.4%
- Veröffentlicht 09.06.2026 15:50:46
- Zuletzt bearbeitet 11.06.2026 07:16:29
- Quelle a2826606-91e7-4eb6-899e-8484bd
- CVE-Watchlists
- Unerledigt
Insufficient input validation in certain NETGEAR routers
A vulnerability in the affected NETGEAR gaming routers allows attackers with the ability to intercept and tamper with traffic between the router and the Internet, to execute code on the device.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerNETGEAR
≫
Produkt
MR70
Default Statusunaffected
Version
0
Version <
V1.0.4.48
Status
affected
HerstellerNETGEAR
≫
Produkt
MS70
Default Statusunaffected
Version
0
Version <
V1.0.4.48
Status
affected
HerstellerNETGEAR
≫
Produkt
RAXE500
Default Statusunaffected
Version
0
Version <
V1.2.14.114
Status
affected
HerstellerNETGEAR
≫
Produkt
XR1000
Default Statusunaffected
Version
0
Version <
V1.0.2.86
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.4% | 0.314 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| a2826606-91e7-4eb6-899e-8484bd4575d5 | 6.9 | 0 | 0 |
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
https://www.netgear.com/support/product/xr1000/
https://www.netgear.com/support/product/raxe500/
https://www.netgear.com/support/product/mr70/
https://www.netgear.com/support/product/ms70/
https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory