CVE-2026-0417
4.3
Vector
CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:D/RE:L/U:AmberShow more
CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:D/RE:L/U:AmberShow less
Source: a2826606-91e7-4eb6-899e-8484bd4575d5 (Secondary)
Description
Insufficient input validation vulnerability in the listed NETGEAR devices allows
authenticated administrators connected to the local network to tamper with
the router's integrity.
Affected (27)
Products: Netgear: Mr60 Firmware, Mr70 Firmware, Mr80 Firmware, Ms60 Firmware, Ms70 Firmware, Ms80 Firmware, R6400v2 Firmware, R6700v3 Firmware, R6900p Firmware, R7000 Firmware, R7000p Firmware, R7960p Firmware, R8000p Firmware, R8500 Firmware, Rax20 Firmware, Rax35v2 Firmware, Rax40v2 Firmware, Rax41 Firmware, Rax42 Firmware, Rax43 Firmware, Rax45 Firmware, Rax48 Firmware, Rax50 Firmware, Rax50s Firmware, Raxe450 Firmware, Raxe500 Firmware, Xr1000 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.7.132 |
| Running on/with | Platform Versions |
|---|---|
Netgear Mr60 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.3.28 |
| Running on/with | Platform Versions |
|---|---|
Netgear Mr70 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.7.14 |
| Running on/with | Platform Versions |
|---|---|
Netgear Mr80 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.7.132 |
| Running on/with | Platform Versions |
|---|---|
Netgear Ms60 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.3.28 |
| Running on/with | Platform Versions |
|---|---|
Netgear Ms70 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.7.14 |
| Running on/with | Platform Versions |
|---|---|
Netgear Ms80 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.4.128 |
| Running on/with | Platform Versions |
|---|---|
Netgear R6400v2 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.4.128 |
| Running on/with | Platform Versions |
|---|---|
Netgear R6700v3 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.3.3.152 |
| Running on/with | Platform Versions |
|---|---|
Netgear R6900p | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.11.216 |
| Running on/with | Platform Versions |
|---|---|
Netgear R7000 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.3.3.152 |
| Running on/with | Platform Versions |
|---|---|
Netgear R7000p | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.4.4.92 |
| Running on/with | Platform Versions |
|---|---|
Netgear R7960p | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.4.4.92 |
| Running on/with | Platform Versions |
|---|---|
Netgear R8000p | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Netgear R8500 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.18.144 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rax20 | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.16.132 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rax35v2 | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.12.118 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rax40v2 | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.12.118 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rax41 | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.12.118 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rax42 | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.12.120 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rax43 | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.12.118 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rax45 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.12.118 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rax48 | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.12.120 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rax50 | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.12.120 |
| Running on/with | Platform Versions |
|---|---|
Netgear Rax50s | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.10.86 |
| Running on/with | Platform Versions |
|---|---|
Netgear Raxe450 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.10.86 |
| Running on/with | Platform Versions |
|---|---|
Netgear Raxe500 | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.0.68 |
| Running on/with | Platform Versions |
|---|---|
Netgear Xr1000 | All versions |
References (28)
Source: a2826606-91e7-4eb6-899e-8484bd4575d5
Vendor Advisory
Timeline
No history available yet.