Total
5 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2026-0413 | 1 Netgear | 28 Rbe370, Rbe370 Firmware, Rbe770 and 25 more | 2026-06-18 | N/A | 4.5 MEDIUM |
| A buffer overflow vulnerability due to insufficient input validation in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality. | |||||
| CVE-2026-0415 | 1 Netgear | 26 Rbe970, Rbe970 Firmware, Rbr750 and 23 more | 2026-06-18 | N/A | 4.5 MEDIUM |
| Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality. | |||||
| CVE-2026-3088 | 1 Netgear | 16 Rbe970, Rbe970 Firmware, Rbe971 and 13 more | 2026-06-18 | N/A | 6.5 MEDIUM |
| Unauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests. | |||||
| CVE-2026-0405 | 1 Netgear | 50 Cbr750, Cbr750 Firmware, Nbr750 and 47 more | 2026-06-17 | N/A | 7.8 HIGH |
| An authentication bypass vulnerability in NETGEAR Orbi devices allows users connected to the local network to access the router web interface as an admin. | |||||
| CVE-2026-0404 | 1 Netgear | 24 Rbr750, Rbr750 Firmware, Rbr840 and 21 more | 2026-06-17 | N/A | 8.0 HIGH |
| An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default. | |||||
