CVE-2026-0405

MEDIUM EPSS 24.7%
Published Jan 13, 20265mo ago · Modified Jun 17, 20261w ago
6.1 CVSS 4.0
Medium
Find Similar
Published Jan 13, 2026 5mo ago
Last Modified Jun 17, 2026 1w ago

Description

An authentication bypass vulnerability in NETGEAR Orbi devices allows users connected to the local network to access the router web interface as an admin.

CVSS Details

Base Score
6.1
Exploitability
Impact
Vector string
CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber
Attack Vector Adjacent
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope X

Threat Intelligence

EPSS Exploit Probability
24.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-287 Improper Authentication Authentication

Affected Products 50

VendorProductVersionRange
netgearcbr750_firmware* <4.6.14.8
netgearcbr750*any
netgearnbr750_firmware* <4.6.15.14
netgearnbr750*any
netgearrbe370_firmware* <12.1.3.11
netgearrbe370*any
netgearrbe371_firmware* <12.1.3.11
netgearrbe371*any
netgearrbe372_firmware* <12.1.3.11
netgearrbe372*any
netgearrbe373_firmware* <12.1.3.11
netgearrbe373*any
netgearrbe374_firmware* <12.1.3.11
netgearrbe374*any
netgearrbe770_firmware* <10.5.20.7
netgearrbe770*any
netgearrbe771_firmware* <10.5.20.7
netgearrbe771*any
netgearrbe772_firmware* <10.5.20.7
netgearrbe772*any
netgearrbe773_firmware* <10.5.20.7
netgearrbe773*any
netgearrbe970_firmware* <9.13.2.1
netgearrbe970*any
netgearrbe971_firmware* <9.13.2.1
netgearrbe971*any
netgearrbr750_firmware* <7.2.8.2
netgearrbr750*any
netgearrbr840_firmware* <7.2.8.2
netgearrbr840*any
netgearrbr850_firmware* <7.2.8.2
netgearrbr850*any
netgearrbr860_firmware* <7.2.8.2
netgearrbr860*any
netgearrbs750_firmware* <7.2.8.2
netgearrbs750*any
netgearrbs840_firmware* <7.2.8.2
netgearrbs840*any
netgearrbs850_firmware* <7.2.8.2
netgearrbs850*any
netgearrbs860_firmware* <7.2.8.2
netgearrbs860*any
netgearrbre950_firmware* <7.2.8.2
netgearrbre950*any
netgearrbre960_firmware* <7.2.8.2
netgearrbre960*any
netgearrbse950_firmware* <7.2.8.2
netgearrbse950*any
netgearrbse960_firmware* <7.2.8.2
netgearrbse960*any

References 26

  • kb.netgear.com https://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory
    PatchVendor Advisory
  • netgear.com https://www.netgear.com/support/product/cbr750
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/nbr750
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe370
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe371
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe372
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe373
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe374
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe770
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe771
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe772
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe773
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe970
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe971
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbr750
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbr840
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbr850
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbr860
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbre950
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbre960
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbs750
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbs840
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbs850
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbs860
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbse950
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbse960
    PatchProduct

Remediation

  • kb.netgear.com https://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory
    PatchVendor Advisory
  • netgear.com https://www.netgear.com/support/product/cbr750
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/nbr750
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe370
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe371
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe372
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe373
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe374
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe770
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe771
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe772
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe773
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe970
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbe971
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbr750
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbr840
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbr850
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbr860
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbre950
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbre960
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbs750
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbs840
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbs850
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbs860
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbse950
    PatchProduct
  • netgear.com https://www.netgear.com/support/product/rbse960
    PatchProduct