Vulnerability-Lookup

FKIE_CVE-2026-9212

Vulnerability from fkie_nvd - Published: 2026-06-09 17:17 - Updated: 2026-06-10 16:17

Severity

5.6 (Medium) - CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U

Summary

Insufficient authentication and input validation in the listed NETGEAR models allow users connected to the local network to execute commands impacting product's confidentiality or change certain configurations.

References

	URL	Tags
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/lbr1020/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/lbr20/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/r6700ax/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/r7800/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/r9000/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax10/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax120/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax120v2/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax36s/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax70/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rax78/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rbr10/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rbr20/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rbr350/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rbr40/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rbr50/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rbs10/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rbs20/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rbs350/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rbs40/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/rbs50/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/xr450/
	a2826606-91e7-4eb6-899e-8484bd4575d5	https://www.netgear.com/support/product/xr500/

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Insufficient authentication and input validation in the\u00a0listed NETGEAR models allow users connected to the local network to execute commands impacting product\u0027s confidentiality or change certain configurations."
    }
  ],
  "id": "CVE-2026-9212",
  "lastModified": "2026-06-10T16:17:18.803",
  "metrics": {
    "cvssMetricV40": [
      {
        "cvssData": {
          "Automatable": "NOT_DEFINED",
          "Recovery": "NOT_DEFINED",
          "Safety": "NOT_DEFINED",
          "attackComplexity": "LOW",
          "attackRequirements": "NONE",
          "attackVector": "ADJACENT",
          "availabilityRequirement": "NOT_DEFINED",
          "baseScore": 5.6,
          "baseSeverity": "MEDIUM",
          "confidentialityRequirement": "NOT_DEFINED",
          "exploitMaturity": "UNREPORTED",
          "integrityRequirement": "NOT_DEFINED",
          "modifiedAttackComplexity": "NOT_DEFINED",
          "modifiedAttackRequirements": "NOT_DEFINED",
          "modifiedAttackVector": "NOT_DEFINED",
          "modifiedPrivilegesRequired": "NOT_DEFINED",
          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
          "modifiedSubIntegrityImpact": "NOT_DEFINED",
          "modifiedUserInteraction": "NOT_DEFINED",
          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
          "privilegesRequired": "LOW",
          "providerUrgency": "NOT_DEFINED",
          "subAvailabilityImpact": "NONE",
          "subConfidentialityImpact": "HIGH",
          "subIntegrityImpact": "NONE",
          "userInteraction": "NONE",
          "valueDensity": "NOT_DEFINED",
          "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
          "version": "4.0",
          "vulnAvailabilityImpact": "NONE",
          "vulnConfidentialityImpact": "HIGH",
          "vulnIntegrityImpact": "LOW",
          "vulnerabilityResponseEffort": "NOT_DEFINED"
        },
        "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-06-09T17:17:51.517",
  "references": [
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/lbr1020/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/lbr20/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/r6700ax/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/r7800/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/r9000/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax10/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax120/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax120v2/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax36s/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax70/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rax78/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rbr10/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rbr20/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rbr350/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rbr40/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rbr50/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rbs10/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rbs20/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rbs350/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rbs40/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/rbs50/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/xr450/"
    },
    {
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "url": "https://www.netgear.com/support/product/xr500/"
    }
  ],
  "sourceIdentifier": "a2826606-91e7-4eb6-899e-8484bd4575d5",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        },
        {
          "lang": "en",
          "value": "CWE-306"
        }
      ],
      "source": "a2826606-91e7-4eb6-899e-8484bd4575d5",
      "type": "Secondary"
    }
  ]
}

CVE-2026-9212 (GCVE-0-2026-9212)

Vulnerability from cvelistv5 – Published: 2026-06-09 15:50 – Updated: 2026-06-10 15:09

Title

Insufficient authentication and input validation in certain NETGEAR products

Summary

Severity

5.6 (Medium)


                        
                          CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-306 - Missing authentication for critical function
CWE-20 - Improper input validation

Assigner

NETGEAR

References

24 references

URL	Tags
https://www.netgear.com/support/product/lbr20/	productpatch
https://www.netgear.com/support/product/lbr1020/	productpatch
https://www.netgear.com/support/product/r6700ax/	productpatch
https://www.netgear.com/support/product/r9000/	productpatch
https://www.netgear.com/support/product/r7800/	productpatch
https://www.netgear.com/support/product/rax10/	productpatch
https://www.netgear.com/support/product/rax120/	productpatch
https://www.netgear.com/support/product/rax78/	productpatch
https://www.netgear.com/support/product/rax120v2/	productpatch
https://www.netgear.com/support/product/rax70/	productpatch
https://www.netgear.com/support/product/rbr10/	productpatch
https://www.netgear.com/support/product/rbr350/	productpatch
https://www.netgear.com/support/product/rbr40/	productpatch
https://www.netgear.com/support/product/rbr50/	productpatch
https://www.netgear.com/support/product/rbs10/	productpatch
https://www.netgear.com/support/product/rbs20/	productpatch
https://www.netgear.com/support/product/rax36s/	productpatch
https://www.netgear.com/support/product/rbr20/	productpatch
https://www.netgear.com/support/product/rbs50/	productpatch
https://www.netgear.com/support/product/rbs350/	productpatch
https://www.netgear.com/support/product/xr500/	productpatch
https://www.netgear.com/support/product/rbs40/	productpatch
https://www.netgear.com/support/product/xr450/	productpatch
https://kb.netgear.com/000070811/June-2026-NETGEA…	vendor-advisory

Impacted products

25 products

Vendor	Product	Version
NETGEAR	LBR1020	Affected: 0 , < V2.6.4.60 (custom)
NETGEAR	LBR20	Affected: 0 , < V2.7.6.8 (custom)
NETGEAR	R6700AX	Affected: 0 , ≤ * (custom)
NETGEAR	R7800	Affected: 0 , < V1.0.4.96 (custom)
NETGEAR	R9000	Affected: 0 , < V1.0.6.46 (custom)
NETGEAR	RAX10	Affected: 0 , < V1.0.5.50 (custom)
NETGEAR	RAX10v2	Affected: 0 , < V1.0.5.50 (custom)
NETGEAR	RAX120	Affected: 0 , < V1.2.10.56 (custom)
NETGEAR	RAX120v1	Affected: 0 , < V1.2.10.56 (custom)
NETGEAR	RAX120v2	Affected: 0 , < V1.2.10.56 (custom)
NETGEAR	RAX36S	Affected: 0 , < V1.0.5.50 (custom)
NETGEAR	RAX70	Affected: 0 , < V1.0.19.172 (custom)
NETGEAR	RAX78	Affected: 0 , < V1.0.19.172 (custom)
NETGEAR	RBR10	Affected: 0 , ≤ 2.7.6.6 (custom)
NETGEAR	RBR20	Affected: 0 , ≤ 2.7.6.6 (custom)
NETGEAR	RBR350	Affected: 0 , < V4.4.2.1 (custom)
NETGEAR	RBR40	Affected: 0 , ≤ 2.7.6.6 (custom)
NETGEAR	RBR50	Affected: 0 , ≤ 2.7.6.6 (custom)
NETGEAR	RBS10	Affected: 0 , ≤ 2.7.6.6 (custom)
NETGEAR	RBS20	Affected: 0 , ≤ 2.7.6.6 (custom)
NETGEAR	RBS350	Affected: 0 , < V4.4.2.1 (custom)
NETGEAR	RBS40	Affected: 0 , ≤ 2.7.6.6 (custom)
NETGEAR	RBS50	Affected: 0 , ≤ 2.7.6.6 (custom)
NETGEAR	XR450	Affected: 0 , < V2.3.3.136 (custom)
NETGEAR	XR500	Affected: 0 , < v2.3.3.136 (custom)

Date Public

2026-06-09 00:00

Credits

ZeroZenx Labs

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-9212",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-10T03:59:30.458680Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-10T13:32:49.023Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "LBR1020",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V2.6.4.60",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "LBR20",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V2.7.6.8",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "R6700AX",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThanOrEqual": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "R7800",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.4.96",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "R9000",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.6.46",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX10",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.5.50",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX10v2",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.5.50",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX120",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.2.10.56",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX120v1",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.2.10.56",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX120v2",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.2.10.56",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX36S",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.5.50",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX70",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.19.172",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RAX78",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V1.0.19.172",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RBR10",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThanOrEqual": "2.7.6.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RBR20",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThanOrEqual": "2.7.6.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RBR350",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V4.4.2.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RBR40",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThanOrEqual": "2.7.6.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RBR50",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThanOrEqual": "2.7.6.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RBS10",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThanOrEqual": "2.7.6.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RBS20",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThanOrEqual": "2.7.6.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RBS350",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V4.4.2.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RBS40",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThanOrEqual": "2.7.6.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "RBS50",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThanOrEqual": "2.7.6.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XR450",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "V2.3.3.136",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XR500",
          "vendor": "NETGEAR",
          "versions": [
            {
              "lessThan": "v2.3.3.136",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "ZeroZenx Labs"
        }
      ],
      "datePublic": "2026-06-09T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eInsufficient authentication and input validation in the\u0026nbsp;listed NETGEAR models allow users connected to the local network to execute commands impacting product\u0027s confidentiality or change certain configurations.\u0026nbsp;\u003c/p\u003e"
            }
          ],
          "value": "Insufficient authentication and input validation in the\u00a0listed NETGEAR models allow users connected to the local network to execute commands impacting product\u0027s confidentiality or change certain configurations."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-242",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-242 Code Injection"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "ADJACENT",
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "exploitMaturity": "UNREPORTED",
            "privilegesRequired": "LOW",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "LOW",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-306",
              "description": "CWE-306 Missing authentication for critical function",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20 Improper input validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-10T15:09:11.714Z",
        "orgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
        "shortName": "NETGEAR"
      },
      "references": [
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/lbr20/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/lbr1020/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/r6700ax/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/r9000/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/r7800/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax10/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax120/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax78/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax120v2/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax70/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rbr10/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rbr350/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rbr40/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rbr50/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rbs10/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rbs20/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rax36s/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rbr20/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rbs50/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rbs350/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/xr500/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/rbs40/"
        },
        {
          "tags": [
            "product",
            "patch"
          ],
          "url": "https://www.netgear.com/support/product/xr450/"
        },
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eDevices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:\u003c/p\u003e\u003ctable\u003e\u003cthead\u003e\u003ctr\u003e\u003cth\u003eProduct\u003c/th\u003e\u003cth\u003eFixed Version\u003c/th\u003e\u003c/tr\u003e\u003c/thead\u003e\u003ctbody\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eLBR1020 (EoS)\u003c/b\u003e Orbi 4GX AC1200 Dual-Band Mesh WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/lbr1020/\"\u003eV2.6.4.60\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eLBR20\u003c/b\u003e Orbi LTE Tri-band WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/lbr20/\"\u003eV2.7.6.8\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eR6700AX (EoS)\u003c/b\u003e 4-Stream AX1800 WiFi 6 Router\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eR7800 (EoS)\u003c/b\u003e Nighthawk X4S AC2600 Smart WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/r7800/\"\u003eV1.0.4.96\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eR9000 (EoS)\u003c/b\u003e Nighthawk X10 AD7200 Smart WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/r9000/\"\u003eV1.0.6.46\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX10\u003c/b\u003e 4-Stream AX1800 WiFi 6 Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax10/\"\u003eV1.0.5.50\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX10v2\u003c/b\u003e\u003c/td\u003e\u003ctd\u003eV1.0.5.50\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX120 (EoS)\u003c/b\u003e Nighthawk AX12 12-Stream WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax120/\"\u003eV1.2.10.56\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX120v1 (EoS)\u003c/b\u003e\u003c/td\u003e\u003ctd\u003eV1.2.10.56\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX120v2\u003c/b\u003e Nighthawk AX12 12-Stream AX6000 WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax120v2/\"\u003eV1.2.10.56\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX36S\u003c/b\u003e Nighthawk AX4 4-Stream AX3000 WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax36s/\"\u003eV1.0.5.50\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX70\u003c/b\u003e Nighthawk Tri-band AX8 8-Stream AX6600 WiFi 6 Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax70/\"\u003eV1.0.19.172\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRAX78\u003c/b\u003e Nighthawk AX8 8-Stream AX6200 Tri-Band WiFi Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rax78/\"\u003eV1.0.19.172\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBR10 (EoS)\u003c/b\u003e Orbi AC1200 Dual-Band Mesh WiFi Router\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBR20 (EoS)\u003c/b\u003e Orbi AC2200 Tri-band WiFi Router\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBR350\u003c/b\u003e Orbi AX1800 WiFi 6 Dual-band Mesh Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rbr350/\"\u003eV4.4.2.1\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBR40 (EoS)\u003c/b\u003e Orbi AC2200 Tri-band WiFi Router\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBR50 (EoS)\u003c/b\u003e Orbi AC3000 Tri-band WiFi Router\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBS10 (EoS)\u003c/b\u003e Orbi AC1200 Dual-Band Mesh WiFi Add-on Satellite\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBS20 (EoS)\u003c/b\u003e Orbi AC2200 Tri-band WiFi Add-on Satellite\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBS350\u003c/b\u003e Orbi AX1800 WiFi 6 Dual-band Mesh Add-on Satellite\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/rbs350/\"\u003eV4.4.2.1\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBS40 (EoS)\u003c/b\u003e Orbi AC2200 Tri-band WiFi Add-on Satellite\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eRBS50 (EoS)\u003c/b\u003e Orbi AC3000 Tri-band WiFi Add-on Satellite\u003c/td\u003e\u003ctd\u003eEOS\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eXR450 (EoS)\u003c/b\u003e Nighthawk Pro Gaming Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/xr450/\"\u003eV2.3.3.136\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cb\u003eXR500 (EoS)\u003c/b\u003e Nighthawk Pro Gaming Router\u003c/td\u003e\u003ctd\u003e\u003ca href=\"https://www.netgear.com/support/product/xr500/\"\u003ev2.3.3.136\u003c/a\u003e\u003c/td\u003e\u003c/tr\u003e\u003c/tbody\u003e\u003c/table\u003e\u003cp\u003eModels marked (EoS) have reached End-of-Support phase, and no security updates are planned. NETGEAR strongly recommends that you retire these devices and upgrade to a newer NETGEAR device for continued security support.\u003c/p\u003e"
            }
          ],
          "value": "Devices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:\n\nProductFixed VersionLBR1020 (EoS) Orbi 4GX AC1200 Dual-Band Mesh WiFi Router V2.6.4.60 https://www.netgear.com/support/product/lbr1020/ LBR20 Orbi LTE Tri-band WiFi Router V2.7.6.8 https://www.netgear.com/support/product/lbr20/ R6700AX (EoS) 4-Stream AX1800 WiFi 6 RouterEOSR7800 (EoS) Nighthawk X4S AC2600 Smart WiFi Router V1.0.4.96 https://www.netgear.com/support/product/r7800/ R9000 (EoS) Nighthawk X10 AD7200 Smart WiFi Router V1.0.6.46 https://www.netgear.com/support/product/r9000/ RAX10 4-Stream AX1800 WiFi 6 Router V1.0.5.50 https://www.netgear.com/support/product/rax10/ RAX10v2V1.0.5.50RAX120 (EoS) Nighthawk AX12 12-Stream WiFi Router V1.2.10.56 https://www.netgear.com/support/product/rax120/ RAX120v1 (EoS)V1.2.10.56RAX120v2 Nighthawk AX12 12-Stream AX6000 WiFi Router V1.2.10.56 https://www.netgear.com/support/product/rax120v2/ RAX36S Nighthawk AX4 4-Stream AX3000 WiFi Router V1.0.5.50 https://www.netgear.com/support/product/rax36s/ RAX70 Nighthawk Tri-band AX8 8-Stream AX6600 WiFi 6 Router V1.0.19.172 https://www.netgear.com/support/product/rax70/ RAX78 Nighthawk AX8 8-Stream AX6200 Tri-Band WiFi Router V1.0.19.172 https://www.netgear.com/support/product/rax78/ RBR10 (EoS) Orbi AC1200 Dual-Band Mesh WiFi RouterEOSRBR20 (EoS) Orbi AC2200 Tri-band WiFi RouterEOSRBR350 Orbi AX1800 WiFi 6 Dual-band Mesh Router V4.4.2.1 https://www.netgear.com/support/product/rbr350/ RBR40 (EoS) Orbi AC2200 Tri-band WiFi RouterEOSRBR50 (EoS) Orbi AC3000 Tri-band WiFi RouterEOSRBS10 (EoS) Orbi AC1200 Dual-Band Mesh WiFi Add-on SatelliteEOSRBS20 (EoS) Orbi AC2200 Tri-band WiFi Add-on SatelliteEOSRBS350 Orbi AX1800 WiFi 6 Dual-band Mesh Add-on Satellite V4.4.2.1 https://www.netgear.com/support/product/rbs350/ RBS40 (EoS) Orbi AC2200 Tri-band WiFi Add-on SatelliteEOSRBS50 (EoS) Orbi AC3000 Tri-band WiFi Add-on SatelliteEOSXR450 (EoS) Nighthawk Pro Gaming Router V2.3.3.136 https://www.netgear.com/support/product/xr450/ XR500 (EoS) Nighthawk Pro Gaming Router v2.3.3.136 https://www.netgear.com/support/product/xr500/ \n\nModels marked (EoS) have reached End-of-Support phase, and no security updates are planned. NETGEAR strongly recommends that you retire these devices and upgrade to a newer NETGEAR device for continued security support."
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "Insufficient authentication and input validation in certain NETGEAR products",
      "x_generator": {
        "engine": "Vulnogram 1.0.3"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a2826606-91e7-4eb6-899e-8484bd4575d5",
    "assignerShortName": "NETGEAR",
    "cveId": "CVE-2026-9212",
    "datePublished": "2026-06-09T15:50:53.044Z",
    "dateReserved": "2026-05-21T17:29:04.787Z",
    "dateUpdated": "2026-06-10T15:09:11.714Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

FKIE_CVE-2026-9212

CVE-2026-9212 (GCVE-0-2026-9212)

Tags

Sightings

Nomenclature