CVE-2026-0418
- EPSS 0.25%
- Veröffentlicht 09.06.2026 15:50:50
- Zuletzt bearbeitet 10.06.2026 17:16:31
Insufficient configuration management in the listed devices allows authenticated administrators connected to the local network to tamper with the system.
CVE-2026-0417
- EPSS 0.23%
- Veröffentlicht 09.06.2026 15:50:49
- Zuletzt bearbeitet 10.06.2026 16:16:55
Insufficient input validation vulnerability in the listed NETGEAR devices allows authenticated administrators connected to the local network to tamper with the router's integrity.
CVE-2026-9210
- EPSS 0.22%
- Veröffentlicht 09.06.2026 15:50:48
- Zuletzt bearbeitet 10.06.2026 19:16:38
Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.
CVE-2026-9213
- EPSS 0.4%
- Veröffentlicht 09.06.2026 15:50:46
- Zuletzt bearbeitet 11.06.2026 07:16:29
A vulnerability in the affected NETGEAR gaming routers allows attackers with the ability to intercept and tamper with traffic between the router and the Internet, to execute code on the device.
CVE-2026-0410
- EPSS 0.22%
- Veröffentlicht 09.06.2026 15:41:47
- Zuletzt bearbeitet 10.06.2026 16:16:55
Authenticated administrators connected to the local network can gain elevated access to the router and make unauthorized changes to router software and functionality.
CVE-2025-25246
- EPSS 0.68%
- Veröffentlicht 05.02.2025 05:15:11
- Zuletzt bearbeitet 15.04.2026 00:35:42
NETGEAR XR1000 before 1.0.0.74, XR1000v2 before 1.1.0.22, and XR500 before 2.3.2.134 allow remote code execution by unauthenticated users.
CVE-2021-34870
- EPSS 0.9%
- Veröffentlicht 25.01.2022 16:15:08
- Zuletzt bearbeitet 21.11.2024 06:11:22
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of NETGEAR XR1000 1.0.0.52_1.0.38 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within ...