Total
8 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2026-0413 | 1 Netgear | 28 Rbe370, Rbe370 Firmware, Rbe770 and 25 more | 2026-06-18 | N/A | 4.5 MEDIUM |
| A buffer overflow vulnerability due to insufficient input validation in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality. | |||||
| CVE-2026-0415 | 1 Netgear | 26 Rbe970, Rbe970 Firmware, Rbr750 and 23 more | 2026-06-18 | N/A | 4.5 MEDIUM |
| Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality. | |||||
| CVE-2026-3088 | 1 Netgear | 16 Rbe970, Rbe970 Firmware, Rbe971 and 13 more | 2026-06-18 | N/A | 6.5 MEDIUM |
| Unauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests. | |||||
| CVE-2026-0418 | 1 Netgear | 70 Cbr750, Cbr750 Firmware, Ex6120 and 67 more | 2026-06-18 | N/A | 4.5 MEDIUM |
| Insufficient configuration management in the listed devices allows authenticated administrators connected to the local network to tamper with the system. | |||||
| CVE-2026-0405 | 1 Netgear | 50 Cbr750, Cbr750 Firmware, Nbr750 and 47 more | 2026-06-17 | N/A | 7.8 HIGH |
| An authentication bypass vulnerability in NETGEAR Orbi devices allows users connected to the local network to access the router web interface as an admin. | |||||
| CVE-2026-0404 | 1 Netgear | 24 Rbr750, Rbr750 Firmware, Rbr840 and 21 more | 2026-06-17 | N/A | 8.0 HIGH |
| An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default. | |||||
| CVE-2026-0403 | 1 Netgear | 20 Rbe970, Rbe970 Firmware, Rbe971 and 17 more | 2026-06-17 | N/A | 8.0 HIGH |
| An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections. | |||||
| CVE-2021-45515 | 1 Netgear | 24 Ex7500, Ex7500 Firmware, Rbk752 and 21 more | 2026-06-17 | 3.3 LOW | 6.5 MEDIUM |
| Certain NETGEAR devices are affected by denial of service. This affects EX7500 before 1.0.0.72, RBS40V before 2.6.1.4, RBW30 before 2.6.1.4, RBRE960 before 6.0.3.68, RBSE960 before 6.0.3.68, RBR750 before 3.2.17.12, RBR850 before 3.2.17.12, RBS750 before 3.2.17.12, RBS850 before 3.2.17.12, RBK752 before 3.2.17.12, and RBK852 before 3.2.17.12. | |||||
