Vulnerability-Lookup

FKIE_CVE-2026-0417

Vulnerability from fkie_nvd - Published: 2026-06-09 17:16 - Updated: 2026-06-10 16:16

Severity

4.3 (Medium) - CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/V:D/RE:L/U:Amber

Summary

Insufficient input validation vulnerability in the listed NETGEAR devices allows authenticated administrators connected to the local network to tamper with the router's integrity.

References

	URL	Tags
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/mr60/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/mr70/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/mr80/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/ms60/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/ms70/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/ms80/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/r6400v2/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/r6700v3/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/r6900p/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/r7000/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/r7000p/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/r7960p/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/r8000p/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/r8500/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax20/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax35v2/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax40v2/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax41/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax42/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax43/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax45/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax48/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax50/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax50s/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/raxe450/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/raxe500/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/xr1000/

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Insufficient input validation vulnerability in the listed NETGEAR\u00a0devices\u00a0allows\nauthenticated administrators connected to the local network to\u00a0tamper with\nthe router\u0027s integrity."
    }
  ],
  "id": "CVE-2026-0417",
  "lastModified": "2026-06-10T16:16:55.950",
  "metrics": {
    "cvssMetricV40": [
      {
        "cvssData": {
          "Automatable": "NOT_DEFINED",
          "Recovery": "NOT_DEFINED",
          "Safety": "NOT_DEFINED",
          "attackComplexity": "LOW",
          "attackRequirements": "NONE",
          "attackVector": "ADJACENT",
          "availabilityRequirement": "NOT_DEFINED",
          "baseScore": 4.3,
          "baseSeverity": "MEDIUM",
          "confidentialityRequirement": "NOT_DEFINED",
          "exploitMaturity": "UNREPORTED",
          "integrityRequirement": "NOT_DEFINED",
          "modifiedAttackComplexity": "NOT_DEFINED",
          "modifiedAttackRequirements": "NOT_DEFINED",
          "modifiedAttackVector": "NOT_DEFINED",
          "modifiedPrivilegesRequired": "NOT_DEFINED",
          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
          "modifiedSubIntegrityImpact": "NOT_DEFINED",
          "modifiedUserInteraction": "NOT_DEFINED",
          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
          "privilegesRequired": "HIGH",
          "providerUrgency": "AMBER",
          "subAvailabilityImpact": "NONE",
          "subConfidentialityImpact": "NONE",
          "subIntegrityImpact": "NONE",
          "userInteraction": "NONE",
          "valueDensity": "DIFFUSE",
          "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:D/RE:L/U:Amber",
          "version": "4.0",
          "vulnAvailabilityImpact": "NONE",
          "vulnConfidentialityImpact": "NONE",
          "vulnIntegrityImpact": "HIGH",
          "vulnerabilityResponseEffort": "LOW"
        },
        "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-06-09T17:16:59.450",
  "references": [
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/mr60/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/mr70/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/mr80/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/ms60/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/ms70/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/ms80/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/r6400v2/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/r6700v3/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/r6900p/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/r7000/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/r7000p/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/r7960p/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/r8000p/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/r8500/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax20/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax35v2/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax40v2/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax41/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax42/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax43/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax45/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax48/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax50/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax50s/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/raxe450/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/raxe500/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/xr1000/"
    }
  ],
  "sourceIdentifier": "a2826606-91e7-4eb6-899e-8484bd4575d5",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "type": "Secondary"
    }
  ]
}

CVE-2026-0417 (GCVE-0-2026-0417)

Vulnerability from cvelistv5 – Published: 2026-06-09 15:50 – Updated: 2026-06-10 15:49

Title

Insufficient input validation in certain NETGEAR routers

Summary

Insufficient input validation vulnerability in the listed NETGEAR devices allows authenticated administrators connected to the local network to tamper with the router's integrity.

Severity

4.3 (Medium)


                        
                          CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/V:D/RE:L/U:Amber

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-20 - Improper input validation

Assigner

NETGEAR

References

28 references

URL	Tags
https://www.netgear.com/support/product/mr70/	productpatch
https://www.netgear.com/support/product/mr80/	productpatch
https://www.netgear.com/support/product/mr60/	productpatch
https://www.netgear.com/support/product/ms60/	productpatch
https://www.netgear.com/support/product/ms80/	productpatch
https://www.netgear.com/support/product/r6400v2/	productpatch
https://www.netgear.com/support/product/ms70/	productpatch
https://www.netgear.com/support/product/r6700v3/	productpatch
https://www.netgear.com/support/product/r7000/	productpatch
https://www.netgear.com/support/product/r6900p/	productpatch
https://www.netgear.com/support/product/r8000p/	productpatch
https://www.netgear.com/support/product/r8500/	productpatch
https://www.netgear.com/support/product/rax40v2/	productpatch
https://www.netgear.com/support/product/rax42/	productpatch
https://www.netgear.com/support/product/rax35v2/	productpatch
https://www.netgear.com/support/product/rax41/	productpatch
https://www.netgear.com/support/product/rax20/	productpatch
https://www.netgear.com/support/product/rax43/	productpatch
https://www.netgear.com/support/product/r7960p/	productpatch
https://www.netgear.com/support/product/r7000p/	productpatch
https://www.netgear.com/support/product/rax45/	productpatch
https://www.netgear.com/support/product/rax48/	productpatch
https://www.netgear.com/support/product/raxe450/	productpatch
https://www.netgear.com/support/product/rax50s/	productpatch
https://www.netgear.com/support/product/xr1000/	productpatch
https://www.netgear.com/support/product/rax50/	productpatch
https://www.netgear.com/support/product/raxe500/	productpatch
https://kb.netgear.com/000070811/June-2026-NETGEA…	vendor-advisory

Impacted products

27 products

Vendor	Product	Version
NETGEAR	MR60	Affected: 0 , < V1.1.7.132 (custom)
NETGEAR	MR70	Affected: 0 , < V1.0.3.28 (custom)
NETGEAR	MR80	Affected: 0 , < V1.1.7.14 (custom)
NETGEAR	MS60	Affected: 0 , < V1.1.7.132 (custom)
NETGEAR	MS70	Affected: 0 , < V1.0.3.28 (custom)
NETGEAR	MS80	Affected: 0 , < V1.1.7.14 (custom)
NETGEAR	R6400v2	Affected: 0 , < V1.0.4.128 (custom)
NETGEAR	R6700v3	Affected: 0 , < V1.0.4.128 (custom)
NETGEAR	R6900P	Affected: 0 , < V1.3.3.152 (custom)
NETGEAR	R7000	Affected: 0 , < V1.0.11.216 (custom)
NETGEAR	R7000P	Affected: 0 , < V1.3.3.152 (custom)
NETGEAR	R7960P	Affected: 0 , < V1.4.4.92 (custom)
NETGEAR	R8000P	Affected: 0 , < V1.4.4.92 (custom)
NETGEAR	R8500	Affected: 0 , ≤ 1.0.2.160 (custom)
NETGEAR	RAX20	Affected: 0 , < V1.0.18.144 (custom)
NETGEAR	RAX35v2	Affected: 0 , < V1.0.16.132 (custom)
NETGEAR	RAX40v2	Affected: 0 , < V1.0.12.118 (custom)
NETGEAR	RAX41	Affected: 0 , < V1.0.12.118 (custom)
NETGEAR	RAX42	Affected: 0 , < V1.0.12.118 (custom)
NETGEAR	RAX43	Affected: 0 , < V1.0.12.120 (custom)
NETGEAR	RAX45	Affected: 0 , < V1.0.12.118 (custom)
NETGEAR	RAX48	Affected: 0 , < V1.0.12.118 (custom)
NETGEAR	RAX50	Affected: 0 , < V1.0.12.120 (custom)
NETGEAR	RAX50S	Affected: 0 , < V1.0.12.120 (custom)
NETGEAR	RAXE450	Affected: 0 , < V1.0.10.86 (custom)
NETGEAR	RAXE500	Affected: 0 , < V1.0.10.86 (custom)
NETGEAR	XR1000	Affected: 0 , < V1.0.0.68 (custom)

Date Public

2026-06-09 00:00

Credits

pjqwudi

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-0417",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-09T17:10:42.291794Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-09T17:10:51.031Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "MR60",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.1.7.132",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "MR70",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.3.28",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "MR80",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.1.7.14",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "MS60",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.1.7.132",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "MS70",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.3.28",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "MS80",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.1.7.14",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "R6400v2",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.4.128",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "R6700v3",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.4.128",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "R6900P",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.3.3.152",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "R7000",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.11.216",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "R7000P",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.3.3.152",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "R7960P",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.4.4.92",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "R8000P",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.4.4.92",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "R8500",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThanOrEqual": "1.0.2.160",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX20",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.18.144",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX35v2",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.16.132",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX40v2",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.12.118",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX41",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.12.118",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX42",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.12.118",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX43",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.12.120",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX45",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.12.118",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX48",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.12.118",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX50",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.12.120",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX50S",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.12.120",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAXE450",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.10.86",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAXE500",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.10.86",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XR1000",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.0.68",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "pjqwudi"
        }
      ],
      "datePublic": "2026-06-09T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cdiv\u003eInsufficient input validation vulnerability in the listed NETGEAR\u0026nbsp;devices\u0026nbsp;allows\nauthenticated administrators connected to the local network to\u0026nbsp;tamper with\nthe router\u0027s integrity. \u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cp\u003e\u003cbr\u003e\u003c/p\u003e"
            }
          ],
          "value": "Insufficient input validation vulnerability in the listed NETGEAR\u00a0devices\u00a0allows\nauthenticated administrators connected to the local network to\u00a0tamper with\nthe router\u0027s integrity."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-122",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-122 Privilege Abuse"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "ADJACENT",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "exploitMaturity": "UNREPORTED",
            "privilegesRequired": "HIGH",
            "providerUrgency": "AMBER",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "valueDensity": "DIFFUSE",
            "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/V:D/RE:L/U:Amber",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "HIGH",
            "vulnerabilityResponseEffort": "LOW"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20 Improper input validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-10T15:49:33.259Z",
        "orgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
        "shortName": "NETGEAR"
      },
      "references": [
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/mr70/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/mr80/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/mr60/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/ms60/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/ms80/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/r6400v2/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/ms70/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/r6700v3/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/r7000/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/r6900p/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/r8000p/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/r8500/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax40v2/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax42/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax35v2/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax41/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax20/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax43/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/r7960p/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/r7000p/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax45/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax48/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/raxe450/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax50s/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/xr1000/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax50/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/raxe500/"
        },
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eDevices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:\u003c/p\u003e\u003ctable\u003e\u003cthead\u003e\u003ctr\u003e\u003cth\u003eProduct\u003c/th\u003e\u003cth\u003eFixed Version\u003c/th\u003e\u003c/tr\u003e\u003c/thead\u003e\u003ctbody\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eMR60\u003c/b\u003e Nighthawk Mesh WiFi 6 Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/mr60/\"\u003eV1.1.7.132\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eMR70\u003c/b\u003e Nighthawk Mesh WiFi 6 Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/mr70/\"\u003eV1.0.3.28\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eMR80\u003c/b\u003e Nighthawk Tri-band Mesh WiFi 6 Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/mr80/\"\u003eV1.1.7.14\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eMS60\u003c/b\u003e Nighthawk Mesh WiFi 6 Add-on Satellite\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/ms60/\"\u003eV1.1.7.132\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eMS70\u003c/b\u003e Nighthawk Mesh WiFi 6 Add-on Satellite\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/ms70/\"\u003eV1.0.3.28\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eMS80\u003c/b\u003e Nighthawk Tri-band Mesh WiFi 6 Add-on Satellite\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/ms80/\"\u003eV1.1.7.14\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eR6400v2 (EoS)\u003c/b\u003e AC1750 Smart WiFi Router 802.11ac Dual Band Gigabit\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/r6400v2/\"\u003eV1.0.4.128\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eR6700v3 (EoS)\u003c/b\u003e Nighthawk AC1750 Smart WiFi Dual Band Gigabit Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/r6700v3/\"\u003eV1.0.4.128\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eR6900P (EoS)\u003c/b\u003e Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/r6900p/\"\u003eV1.3.3.152\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eR7000 (EoS)\u003c/b\u003e Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/r7000/\"\u003eV1.0.11.216\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eR7000P (EoS)\u003c/b\u003e Nighthawk AC2300 Smart WiFi Dual Band Gigabit Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/r7000p/\"\u003eV1.3.3.152\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eR7960P (EoS)\u003c/b\u003e Nighthawk X6S AC3600 Tri-Band WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/r7960p/\"\u003eV1.4.4.92\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eR8000P (EoS)\u003c/b\u003e Nighthawk X6S AC4000 Tri Band WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/r8000p/\"\u003eV1.4.4.92\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eR8500 (EoS)\u003c/b\u003e Nighthawk X8 AC5300 Smart WiFi Router\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX20 (EoS)\u003c/b\u003e 4-Stream AX1800 WiFi 6 Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax20/\"\u003eV1.0.18.144\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX35v2\u003c/b\u003e Nighthawk AX4 4-Stream AX3000 WiFi 6 Router\u003c/td\u003e\u003ctd\u003eV1.0.16.132\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX40v2\u003c/b\u003e Nighthawk AX4 4-Stream WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax40v2/\"\u003eV1.0.12.118\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX41 (EoS)\u003c/b\u003e Nighthawk AX5 5-Stream AX3600 WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax41/\"\u003eV1.0.12.118\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX42 (EoS)\u003c/b\u003e Nighthawk AX5 5-Stream AX4200 WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax42/\"\u003eV1.0.12.118\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX43 (EoS)\u003c/b\u003e Nighthawk AX5 5-Stream AX4200 WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax43/\"\u003eV1.0.12.120\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX45 (EoS)\u003c/b\u003e Nighthawk AX6 6-Stream AX4300 WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax45/\"\u003eV1.0.12.118\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX48\u003c/b\u003e Nighthawk AX6 6-Stream AX5200 WiFi 6 Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax48/\"\u003eV1.0.12.118\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX50\u003c/b\u003e Nighthawk AX6 6-Stream AX5400 WiFi 6 Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax50/\"\u003eV1.0.12.120\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX50S\u003c/b\u003e Nighthawk AX6 6-Stream AX5400 WiFi 6 Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax50s/\"\u003eV1.0.12.120\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAXE450\u003c/b\u003e Nighthawk AXE10000 Tri-Band WiFi 6E Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/raxe450/\"\u003eV1.0.10.86\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAXE500\u003c/b\u003e Nighthawk AX12 12-Stream AXE11000 Tri-Band WiFi 6E Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/raxe500/\"\u003eV1.0.10.86\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eXR1000\u003c/b\u003e Nighthawk WiFi 6 Pro Gaming Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/xr1000/\"\u003eV1.0.0.68\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003c/tbody\u003e\u003c/table\u003e\u003cp\u003eModels marked (EoS) have reached End-of-Support phase, and no security updates are planned. NETGEAR strongly recommends that you retire these devices and upgrade to a newer NETGEAR device for continued security support.\u003c/p\u003e"
            }
          ],
          "value": "Devices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:\n\nProductFixed VersionMR60 Nighthawk Mesh WiFi 6 Router V1.1.7.132 https://www.netgear.com/support/product/mr60/ MR70 Nighthawk Mesh WiFi 6 Router V1.0.3.28 https://www.netgear.com/support/product/mr70/ MR80 Nighthawk Tri-band Mesh WiFi 6 Router V1.1.7.14 https://www.netgear.com/support/product/mr80/ MS60 Nighthawk Mesh WiFi 6 Add-on Satellite V1.1.7.132 https://www.netgear.com/support/product/ms60/ MS70 Nighthawk Mesh WiFi 6 Add-on Satellite V1.0.3.28 https://www.netgear.com/support/product/ms70/ MS80 Nighthawk Tri-band Mesh WiFi 6 Add-on Satellite V1.1.7.14 https://www.netgear.com/support/product/ms80/ R6400v2 (EoS) AC1750 Smart WiFi Router 802.11ac Dual Band Gigabit V1.0.4.128 https://www.netgear.com/support/product/r6400v2/ R6700v3 (EoS) Nighthawk AC1750 Smart WiFi Dual Band Gigabit Router V1.0.4.128 https://www.netgear.com/support/product/r6700v3/ R6900P (EoS) Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router V1.3.3.152 https://www.netgear.com/support/product/r6900p/ R7000 (EoS) Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router V1.0.11.216 https://www.netgear.com/support/product/r7000/ R7000P (EoS) Nighthawk AC2300 Smart WiFi Dual Band Gigabit Router V1.3.3.152 https://www.netgear.com/support/product/r7000p/ R7960P (EoS) Nighthawk X6S AC3600 Tri-Band WiFi Router V1.4.4.92 https://www.netgear.com/support/product/r7960p/ R8000P (EoS) Nighthawk X6S AC4000 Tri Band WiFi Router V1.4.4.92 https://www.netgear.com/support/product/r8000p/ R8500 (EoS) Nighthawk X8 AC5300 Smart WiFi RouterEOSRAX20 (EoS) 4-Stream AX1800 WiFi 6 Router V1.0.18.144 https://www.netgear.com/support/product/rax20/ RAX35v2 Nighthawk AX4 4-Stream AX3000 WiFi 6 RouterV1.0.16.132RAX40v2 Nighthawk AX4 4-Stream WiFi Router V1.0.12.118 https://www.netgear.com/support/product/rax40v2/ RAX41 (EoS) Nighthawk AX5 5-Stream AX3600 WiFi Router V1.0.12.118 https://www.netgear.com/support/product/rax41/ RAX42 (EoS) Nighthawk AX5 5-Stream AX4200 WiFi Router V1.0.12.118 https://www.netgear.com/support/product/rax42/ RAX43 (EoS) Nighthawk AX5 5-Stream AX4200 WiFi Router V1.0.12.120 https://www.netgear.com/support/product/rax43/ RAX45 (EoS) Nighthawk AX6 6-Stream AX4300 WiFi Router V1.0.12.118 https://www.netgear.com/support/product/rax45/ RAX48 Nighthawk AX6 6-Stream AX5200 WiFi 6 Router V1.0.12.118 https://www.netgear.com/support/product/rax48/ RAX50 Nighthawk AX6 6-Stream AX5400 WiFi 6 Router V1.0.12.120 https://www.netgear.com/support/product/rax50/ RAX50S Nighthawk AX6 6-Stream AX5400 WiFi 6 Router V1.0.12.120 https://www.netgear.com/support/product/rax50s/ RAXE450 Nighthawk AXE10000 Tri-Band WiFi 6E Router V1.0.10.86 https://www.netgear.com/support/product/raxe450/ RAXE500 Nighthawk AX12 12-Stream AXE11000 Tri-Band WiFi 6E Router V1.0.10.86 https://www.netgear.com/support/product/raxe500/ XR1000 Nighthawk WiFi 6 Pro Gaming Router V1.0.0.68 https://www.netgear.com/support/product/xr1000/ \n\nModels marked (EoS) have reached End-of-Support phase, and no security updates are planned. NETGEAR strongly recommends that you retire these devices and upgrade to a newer NETGEAR device for continued security support."
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "Insufficient input validation in certain NETGEAR routers",
      "x_generator": {
        "engine": "Vulnogram 1.0.3"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
    "assignerShortName": "NETGEAR",
    "cveId": "CVE-2026-0417",
    "datePublished": "2026-06-09T15:50:49.507Z",
    "dateReserved": "2025-12-03T04:16:24.254Z",
    "dateUpdated": "2026-06-10T15:49:33.259Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

FKIE_CVE-2026-0417

CVE-2026-0417 (GCVE-0-2026-0417)

Tags

Sightings

Nomenclature