CVE-2026-3088 (GCVE-0-2026-3088)
Vulnerability from cvelistv5 – Published: 2026-06-09 15:50 – Updated: 2026-06-10 18:10
VLAI
EPSS
VEX
Title
Unauthenticated users can disrupt router operation
Summary
Unauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-787 - Out-of-bounds write
Assigner
References
7 references
| URL | Tags |
|---|---|
| https://www.netgear.com/support/product/rbr860/ | productpatch |
| https://www.netgear.com/support/product/rbre950/ | productpatch |
| https://www.netgear.com/support/product/rbre960/ | productpatch |
| https://www.netgear.com/support/product/rbs860/ | productpatch |
| https://www.netgear.com/support/product/rbse960/ | productpatch |
| https://www.netgear.com/support/product/rbse950/ | productpatch |
| https://kb.netgear.com/000070811/June-2026-NETGEA… | vendor-advisory |
Impacted products
8 products
| Vendor | Product | Version | |
|---|---|---|---|
| NETGEAR | RBR860 |
Affected:
V6.3.7.10 , < V7.2.7.15
(custom)
|
|
| NETGEAR | RBRE950 |
Affected:
0 , < v7.2.7.15
(custom)
|
|
| NETGEAR | RBRE960 |
Affected:
V6.3.7.10 , < V7.2.7.15
(custom)
|
|
| NETGEAR | RBE970 |
Affected:
V6.3.7.10 , < V9.10.1.4
(custom)
|
|
| NETGEAR | RBE971 |
Affected:
V6.3.7.10 , < V9.10.1.4
(custom)
|
|
| NETGEAR | RBS860 |
Affected:
0 , < V7.2.7.15
(custom)
|
|
| NETGEAR | RBSE950 |
Affected:
0 , < v7.2.7.15
(custom)
|
|
| NETGEAR | RBSE960 |
Affected:
0 , < V7.2.7.15
(custom)
|
Date Public
2026-06-09 00:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-3088",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-06-09T17:34:47.190713Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-06-09T18:39:56.251Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "RBR860",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V7.2.7.15",
"status": "affected",
"version": "V6.3.7.10",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBRE950",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "v7.2.7.15",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBRE960",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V7.2.7.15",
"status": "affected",
"version": "V6.3.7.10",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBE970",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V9.10.1.4",
"status": "affected",
"version": "V6.3.7.10",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBE971",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V9.10.1.4",
"status": "affected",
"version": "V6.3.7.10",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBS860",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V7.2.7.15",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBSE950",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "v7.2.7.15",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "RBSE960",
"vendor": "NETGEAR",
"versions": [
{
"lessThan": "V7.2.7.15",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "fxc233"
}
],
"datePublic": "2026-06-09T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cdiv\u003eUnauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests.\u003c/div\u003e"
}
],
"value": "Unauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests."
}
],
"impacts": [
{
"capecId": "CAPEC-100",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-100 Overflow Buffers"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "ADJACENT",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"exploitMaturity": "UNREPORTED",
"privilegesRequired": "NONE",
"providerUrgency": "AMBER",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "DIFFUSE",
"vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/V:D/RE:L/U:Amber",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "LOW"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-787",
"description": "CWE-787 Out-of-bounds write",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-10T18:10:51.832Z",
"orgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"shortName": "NETGEAR"
},
"references": [
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbr860/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbre950/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbre960/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbs860/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbse960/"
},
{
"tags": [
"product",
"patch"
],
"url": "https://www.netgear.com/support/product/rbse950/"
},
{
"tags": [
"vendor-advisory"
],
"url": "https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory"
}
],
"solutions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eDevices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:\u003c/p\u003e\u003ctable\u003e\u003cthead\u003e\u003ctr\u003e\u003cth\u003eProduct\u003c/th\u003e\u003cth\u003eFixed Version\u003c/th\u003e\u003c/tr\u003e\u003c/thead\u003e\u003ctbody\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBE970\u003c/b\u003e Orbi Quad-band Mesh WiFi 7 Add-on Satellite\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rbe970/\"\u003eV9.10.1.4\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBE971\u003c/b\u003e Orbi Quad-band Mesh WiFi 7 Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rbe971/\"\u003eV9.10.1.4\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBR860\u003c/b\u003e Orbi Tri-band Mesh WiFi 6 Router \u2013 860 Series\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rbr860/\"\u003eV7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBRE950\u003c/b\u003e Orbi Quad-band Mesh WiFi 6E Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rbre950/\"\u003ev7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBRE960\u003c/b\u003e Orbi Quad-band Mesh WiFi 6E Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rbre960/\"\u003eV7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBS860\u003c/b\u003e Orbi Tri-band Mesh WiFi 6 Add-on Satellite \u2013 860 Series\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rbs860/\"\u003eV7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBSE950\u003c/b\u003e Orbi Quad-band Mesh WiFi 6E Add-on Satellite\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rbse950/\"\u003ev7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBSE960\u003c/b\u003e Orbi Quad-band Mesh WiFi 6E Add-on Satellite\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rbse960/\"\u003eV7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003c/tbody\u003e\u003c/table\u003e"
}
],
"value": "Devices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:\n\nProductFixed VersionRBE970 Orbi Quad-band Mesh WiFi 7 Add-on Satellite V9.10.1.4 https://www.netgear.com/support/product/rbe970/ RBE971 Orbi Quad-band Mesh WiFi 7 Router V9.10.1.4 https://www.netgear.com/support/product/rbe971/ RBR860 Orbi Tri-band Mesh WiFi 6 Router \u2013 860 Series V7.2.7.15 https://www.netgear.com/support/product/rbr860/ RBRE950 Orbi Quad-band Mesh WiFi 6E Router v7.2.7.15 https://www.netgear.com/support/product/rbre950/ RBRE960 Orbi Quad-band Mesh WiFi 6E Router V7.2.7.15 https://www.netgear.com/support/product/rbre960/ RBS860 Orbi Tri-band Mesh WiFi 6 Add-on Satellite \u2013 860 Series V7.2.7.15 https://www.netgear.com/support/product/rbs860/ RBSE950 Orbi Quad-band Mesh WiFi 6E Add-on Satellite v7.2.7.15 https://www.netgear.com/support/product/rbse950/ RBSE960 Orbi Quad-band Mesh WiFi 6E Add-on Satellite V7.2.7.15 https://www.netgear.com/support/product/rbse960/"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Unauthenticated users can disrupt router operation",
"x_generator": {
"engine": "Vulnogram 1.0.3"
}
}
},
"cveMetadata": {
"assignerOrgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
"assignerShortName": "NETGEAR",
"cveId": "CVE-2026-3088",
"datePublished": "2026-06-09T15:50:47.289Z",
"dateReserved": "2026-02-24T00:11:29.678Z",
"dateUpdated": "2026-06-10T18:10:51.832Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-3088",
"date": "2026-07-09",
"epss": "0.00357",
"percentile": "0.27818"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-3088\",\"sourceIdentifier\":\"a2826606-91e7-4eb6-899e-8484bd4575d5\",\"published\":\"2026-06-09T17:17:05.800\",\"lastModified\":\"2026-06-18T15:39:23.643\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests.\"}],\"affected\":[{\"source\":\"a2826606-91e7-4eb6-899e-8484bd4575d5\",\"affectedData\":[{\"vendor\":\"NETGEAR\",\"product\":\"RBR860\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"V6.3.7.10\",\"lessThan\":\"V7.2.7.15\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"NETGEAR\",\"product\":\"RBRE950\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"v7.2.7.15\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"NETGEAR\",\"product\":\"RBRE960\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"V6.3.7.10\",\"lessThan\":\"V7.2.7.15\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"NETGEAR\",\"product\":\"RBE970\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"V6.3.7.10\",\"lessThan\":\"V9.10.1.4\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"NETGEAR\",\"product\":\"RBE971\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"V6.3.7.10\",\"lessThan\":\"V9.10.1.4\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"NETGEAR\",\"product\":\"RBS860\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"V7.2.7.15\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"NETGEAR\",\"product\":\"RBSE950\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"v7.2.7.15\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"NETGEAR\",\"product\":\"RBSE960\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"V7.2.7.15\",\"versionType\":\"custom\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"a2826606-91e7-4eb6-899e-8484bd4575d5\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:D/RE:L/U:Amber\",\"baseScore\":4.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"ADJACENT\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"NONE\",\"vulnIntegrityImpact\":\"NONE\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"UNREPORTED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"DIFFUSE\",\"vulnerabilityResponseEffort\":\"LOW\",\"providerUrgency\":\"AMBER\"}}],\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"ADJACENT_NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-06-09T17:34:47.190713Z\",\"id\":\"CVE-2026-3088\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"a2826606-91e7-4eb6-899e-8484bd4575d5\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netgear:rbe970_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.10.1.4\",\"matchCriteriaId\":\"1622F954-A7F9-403E-9D46-65300B35C12C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netgear:rbe970:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE1F3088-9598-4EB5-A8A0-E0D4E529CB12\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netgear:rbe971_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.10.1.4\",\"matchCriteriaId\":\"2A130763-ECA5-49E1-A94A-047CFF83E867\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netgear:rbe971:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3080999-19F9-4651-80F3-A6461C27E489\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netgear:rbr860_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"7.2.7.15\",\"matchCriteriaId\":\"41C146B0-2AF8-42FF-BF2C-D66DEF25279F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netgear:rbr860:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"928FC2C1-4D05-495B-ACD8-1D013EB18EE6\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netgear:rbre950_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"7.2.7.15\",\"matchCriteriaId\":\"0182977C-C2FD-4551-ACF2-FF6BB441870E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netgear:rbre950:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"848E7D41-EB61-4AB3-9AED-8E35281DB464\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netgear:rbre960_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"7.2.7.15\",\"matchCriteriaId\":\"A20DC86E-1D91-4389-A4CC-4F0C07FED971\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netgear:rbre960:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"314FF95E-5A0C-4A6B-B8D6-28546F2C1A12\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netgear:rbs860_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"7.2.7.15\",\"matchCriteriaId\":\"2E47D8AD-C273-44B5-A5CC-A4A11B196E38\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netgear:rbs860:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6630553-D726-4524-8BD2-3EE839DE6676\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netgear:rbse950_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"7.2.7.15\",\"matchCriteriaId\":\"AD642F4E-4C1E-465A-B46D-7598DB007708\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netgear:rbse950:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32A3F32B-B05E-42C6-969A-0F4DD5B7942E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:netgear:rbse960_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"7.2.7.15\",\"matchCriteriaId\":\"7EDA4DC3-9F2D-4039-978C-FDF07A445E7D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:netgear:rbse960:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"419AF785-61C6-4911-A170-6A06D7991948\"}]}]}],\"references\":[{\"url\":\"https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory\",\"source\":\"a2826606-91e7-4eb6-899e-8484bd4575d5\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.netgear.com/support/product/rbr860/\",\"source\":\"a2826606-91e7-4eb6-899e-8484bd4575d5\",\"tags\":[\"Product\"]},{\"url\":\"https://www.netgear.com/support/product/rbre950/\",\"source\":\"a2826606-91e7-4eb6-899e-8484bd4575d5\",\"tags\":[\"Product\"]},{\"url\":\"https://www.netgear.com/support/product/rbre960/\",\"source\":\"a2826606-91e7-4eb6-899e-8484bd4575d5\",\"tags\":[\"Product\"]},{\"url\":\"https://www.netgear.com/support/product/rbs860/\",\"source\":\"a2826606-91e7-4eb6-899e-8484bd4575d5\",\"tags\":[\"Product\"]},{\"url\":\"https://www.netgear.com/support/product/rbse950/\",\"source\":\"a2826606-91e7-4eb6-899e-8484bd4575d5\",\"tags\":[\"Product\"]},{\"url\":\"https://www.netgear.com/support/product/rbse960/\",\"source\":\"a2826606-91e7-4eb6-899e-8484bd4575d5\",\"tags\":[\"Product\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-3088\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-06-09T17:34:47.190713Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-06-09T17:34:53.277Z\"}}], \"cna\": {\"title\": \"Unauthenticated users can disrupt router operation\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"fxc233\"}], \"impacts\": [{\"capecId\": \"CAPEC-100\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-100 Overflow Buffers\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"NOT_DEFINED\", \"baseScore\": 4.9, \"Automatable\": \"NOT_DEFINED\", \"attackVector\": \"ADJACENT\", \"baseSeverity\": \"MEDIUM\", \"valueDensity\": \"DIFFUSE\", \"vectorString\": \"CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/V:D/RE:L/U:Amber\", \"exploitMaturity\": \"UNREPORTED\", \"providerUrgency\": \"AMBER\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"NONE\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"NONE\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"NONE\", \"vulnerabilityResponseEffort\": \"LOW\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"NETGEAR\", \"product\": \"RBR860\", \"versions\": [{\"status\": \"affected\", \"version\": \"V6.3.7.10\", \"lessThan\": \"V7.2.7.15\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"NETGEAR\", \"product\": \"RBRE950\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"v7.2.7.15\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"NETGEAR\", \"product\": \"RBRE960\", \"versions\": [{\"status\": \"affected\", \"version\": \"V6.3.7.10\", \"lessThan\": \"V7.2.7.15\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"NETGEAR\", \"product\": \"RBRE970\", \"versions\": [{\"status\": \"affected\", \"version\": \"V6.3.7.10\", \"lessThan\": \"V9.10.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"NETGEAR\", \"product\": \"RBRE971\", \"versions\": [{\"status\": \"affected\", \"version\": \"V6.3.7.10\", \"lessThan\": \"V9.10.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"NETGEAR\", \"product\": \"RBS860\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V7.2.7.15\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"NETGEAR\", \"product\": \"RBSE950\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"v7.2.7.15\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"NETGEAR\", \"product\": \"RBSE960\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V7.2.7.15\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"NETGEAR strongly recommends that you install the latest firmware as soon as possible.\\n\\n\\n\\nIssue fixed in:\\n\\nProductFixed VersionRBR860 V7.2.7.15 https://www.netgear.com/support/product/rbr860/ RBRE950 v7.2.7.15 https://www.netgear.com/support/product/rbre950/ RBRE960 V7.2.7.15 https://www.netgear.com/support/product/rbre960/ RBRE970\\u00a0V9.10.1.4RBRE971\\u00a0V9.10.1.4RBS860 V7.2.7.15 https://www.netgear.com/support/product/rbs860/ RBSE950 v7.2.7.15 https://www.netgear.com/support/product/rbse950/ RBSE960 V7.2.7.15 https://www.netgear.com/support/product/rbse960/\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eNETGEAR strongly recommends that you install the latest firmware as soon as possible.\u003c/p\u003e\u003cp\u003eIssue fixed in:\u003c/p\u003e\u003ctable\u003e\u003cthead\u003e\u003ctr\u003e\u003cth\u003eProduct\u003c/th\u003e\u003cth\u003eFixed Version\u003c/th\u003e\u003c/tr\u003e\u003c/thead\u003e\u003ctbody\u003e\u003ctr\u003e\u003ctd\u003eRBR860\u003c/td\u003e\u003ctd\u003e\u003ca href=\\\"https://www.netgear.com/support/product/rbr860/\\\"\u003eV7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBRE950\u003c/td\u003e\u003ctd\u003e\u003ca href=\\\"https://www.netgear.com/support/product/rbre950/\\\"\u003ev7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBRE960\u003c/td\u003e\u003ctd\u003e\u003ca href=\\\"https://www.netgear.com/support/product/rbre960/\\\"\u003eV7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBRE970\u003c/td\u003e\u003ctd\u003e\u0026nbsp;V9.10.1.4\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBRE971\u003c/td\u003e\u003ctd\u003e\u0026nbsp;V9.10.1.4\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBS860\u003c/td\u003e\u003ctd\u003e\u003ca href=\\\"https://www.netgear.com/support/product/rbs860/\\\"\u003eV7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBSE950\u003c/td\u003e\u003ctd\u003e\u003ca href=\\\"https://www.netgear.com/support/product/rbse950/\\\"\u003ev7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003eRBSE960\u003c/td\u003e\u003ctd\u003e\u003ca href=\\\"https://www.netgear.com/support/product/rbse960/\\\"\u003eV7.2.7.15\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003c/tbody\u003e\u003c/table\u003e\", \"base64\": false}]}], \"datePublic\": \"2026-06-09T00:00:00.000Z\", \"references\": [{\"url\": \"https://www.netgear.com/support/product/rbr860/\", \"tags\": [\"product\", \"patch\"]}, {\"url\": \"https://www.netgear.com/support/product/rbre950/\", \"tags\": [\"product\", \"patch\"]}, {\"url\": \"https://www.netgear.com/support/product/rbre960/\", \"tags\": [\"product\", \"patch\"]}, {\"url\": \"https://www.netgear.com/support/product/rbs860/\", \"tags\": [\"product\", \"patch\"]}, {\"url\": \"https://www.netgear.com/support/product/rbse960/\", \"tags\": [\"product\", \"patch\"]}, {\"url\": \"https://www.netgear.com/support/product/rbse950/\", \"tags\": [\"product\", \"patch\"]}], \"x_generator\": {\"engine\": \"Vulnogram 1.0.3\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Unauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cdiv\u003eUnauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests.\u003c/div\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-787\", \"description\": \"CWE-787 Out-of-bounds write\"}]}], \"providerMetadata\": {\"orgId\": \"a2826606-91e7-4eb6-899e-8484bd4575d5\", \"shortName\": \"NETGEAR\", \"dateUpdated\": \"2026-06-09T15:50:47.289Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-3088\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-06-09T18:39:56.251Z\", \"dateReserved\": \"2026-02-24T00:11:29.678Z\", \"assignerOrgId\": \"a2826606-91e7-4eb6-899e-8484bd4575d5\", \"datePublished\": \"2026-06-09T15:50:47.289Z\", \"assignerShortName\": \"NETGEAR\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…