Description
Insufficient authentication and input validation in the listed NETGEAR models allow users connected to the local network to execute commands impacting product's confidentiality or change certain configurations.
Published: 2026-06-09
Score: 5.6 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability arises from insufficient authentication mechanisms and missing input validation in multiple NETGEAR routers and access points. An attacker who can reach the local network can send specially crafted requests that bypass authentication checks and execute arbitrary commands on the device. This grants the attacker the ability to read sensitive configuration data or alter device settings, carrying the risk of preventing proper network operations or enabling further lateral movement within the network.

Affected Systems

Affected devices include the NETGEAR LBR1020, LBR20, R6700AX, R7800, R9000, RAX10 (both v1 and v2), RAX120 (all variants), RAX36S, RAX70, RAX78, RBR10, RBR20, RBR350, RBR40, RBR50, RBS10, RBS20, RBS350, RBS40, RBS50, XR450, and XR500. The vendor has published fixed firmware versions for each model, though some models are at end‑of‑support and will no longer receive updates.

Risk and Exploitability

The CVSS score of 5.6 indicates moderate severity, and at present no EPSS data is available, meaning the exploitation probability is unclear. The vulnerability is not listed in CISA’s KEV catalog, so known exploitation packages are not documented. Exploitation requires local network access and the ability to communicate with the device’s management interfaces. Because the attacker can run arbitrary commands, the impact is high if successful. Promptly applying official firmware updates mitigates the risk.

Generated by OpenCVE AI on June 9, 2026 at 17:42 UTC.

Remediation

Vendor Solution

NETGEAR strongly recommends that you install the latest firmware as soon as possible. Issue fixed in: ProductFixed VersionLBR1020* V2.6.4.60 https://www.netgear.com/support/product/lbr1020/ LBR20 V2.7.6.8 https://www.netgear.com/support/product/lbr20/ R6700AX*EOSR7800* V1.0.4.96 https://www.netgear.com/support/product/r7800/ R9000* V1.0.6.46 https://www.netgear.com/support/product/r9000/ RAX10 V1.0.5.50 https://www.netgear.com/support/product/rax10/ RAX10v2V1.0.5.50RAX120 V1.2.10.56 https://www.netgear.com/support/product/rax120/ RAX120v1*V1.2.10.56RAX120v2 V1.2.10.56 https://www.netgear.com/support/product/rax120v2/ RAX36S V1.0.5.50 https://www.netgear.com/support/product/rax36s/ RAX70 V1.0.19.172 https://www.netgear.com/support/product/rax70/ RAX78 V1.0.19.172 https://www.netgear.com/support/product/rax78/ RBR10*EOSRBR20*EOSRBR350 V4.4.2.1 https://www.netgear.com/support/product/rbr350/ RBR40*EOSRBR50*EOSRBS10*EOSRBS20*EOSRBS350 V4.4.2.1 https://www.netgear.com/support/product/rbs350/ RBS40*EOSRBS50*EOSXR450* V2.3.3.136 https://www.netgear.com/support/product/xr450/ XR500* v2.3.3.136 https://www.netgear.com/support/product/xr500/ * Model has reached its End-of-Support (EOS) phase and no future security updates are planned. NETGEAR strongly recommends that you retire this device and upgrade to a newer NETGEAR product for continued security support.

OpenCVE Recommended Actions

  • Install the latest firmware versions supplied by NETGEAR, ensuring the device matches one of the fixed releases listed for its model.
  • For devices that have reached end‑of‑support, retire the equipment and replace it with a current NETGEAR product that receives ongoing security updates.
  • Place the affected devices behind network segmentation or a firewall so that only trusted internal hosts can reach the management interfaces until the firmware is updated.

Generated by OpenCVE AI on June 9, 2026 at 17:42 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 09 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Netgear
Netgear lbr1020
Netgear lbr20
Netgear r6700ax
Netgear r7800
Netgear r9000
Netgear rax10
Netgear rax10v2
Netgear rax120
Netgear rax120v1
Netgear rax120v2
Netgear rax36s
Netgear rax70
Netgear rax78
Netgear rbr10
Netgear rbr20
Netgear rbr350
Netgear rbr40
Netgear rbr50
Netgear rbs10
Netgear rbs20
Netgear rbs350
Netgear rbs40
Netgear rbs50
Netgear xr450
Netgear xr500
Vendors & Products Netgear
Netgear lbr1020
Netgear lbr20
Netgear r6700ax
Netgear r7800
Netgear r9000
Netgear rax10
Netgear rax10v2
Netgear rax120
Netgear rax120v1
Netgear rax120v2
Netgear rax36s
Netgear rax70
Netgear rax78
Netgear rbr10
Netgear rbr20
Netgear rbr350
Netgear rbr40
Netgear rbr50
Netgear rbs10
Netgear rbs20
Netgear rbs350
Netgear rbs40
Netgear rbs50
Netgear xr450
Netgear xr500

Tue, 09 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 09 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Description Insufficient authentication and input validation in the listed NETGEAR models allow users connected to the local network to execute commands impacting product's confidentiality or change certain configurations.
Title Insufficient authentication and input validation in certain NETGEAR products
Weaknesses CWE-20
CWE-306
References
Metrics cvssV4_0

{'score': 5.6, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U'}
cve-icon MITRE

Status: PUBLISHED

Assigner: NETGEAR

Published:

Updated: 2026-06-09T17:14:19.123Z

Reserved: 2026-05-21T17:29:04.787Z

Link: CVE-2026-9212

cve-icon Vulnrichment

Updated: 2026-06-09T17:14:10.889Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-09T17:17:51.517

Modified: 2026-06-09T19:38:32.463

Link: CVE-2026-9212

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-09T20:20:13Z

Weaknesses