CVE-2026-9212

MEDIUM EPSS 18.5%

Published Jun 9, 20262w ago · Modified Jun 18, 20261w ago

5.6 CVSS 4.0

Medium

Published Jun 9, 2026 2w ago

Last Modified Jun 18, 2026 1w ago

Description

Insufficient authentication and input validation in the listed NETGEAR models allow users connected to the local network to execute commands impacting the product's confidentiality or change certain configurations.

CVSS Details

Base Score

5.6

Exploitability

—

Impact

—

Vector string

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector Adjacent

Attack Complexity Low

Privileges Required Low

User Interaction None

Scope X

Threat Intelligence

EPSS Exploit Probability

18.5% percentile

Exploit & Patch Status

No Known Exploit

Patch Available

Weaknesses 2

CWE-20 Improper Input Validation Validation

CWE-306 Missing Authentication for Critical Function Authentication

Affected Products 46

Vendor	Product	Version	Range
netgear	lbr1020_firmware	*	<2.6.4.60
netgear	lbr1020	*	any
netgear	lbr20_firmware	*	<2.7.6.8
netgear	lbr20	*	any
netgear	r6700ax_firmware	*	any
netgear	r6700ax	*	any
netgear	r7800_firmware	*	<1.0.4.96
netgear	r7800	*	any
netgear	r9000_firmware	*	<1.0.6.46
netgear	r9000	*	any
netgear	rax10_firmware	*	<1.0.5.50
netgear	rax10	*	any
netgear	rax120_firmware	*	<1.2.10.56
netgear	rax120	*	any
netgear	rax120	1.0	any
netgear	rax120	2.0	any
netgear	rax36s_firmware	*	<1.0.5.50
netgear	rax36s	*	any
netgear	rax70_firmware	*	<1.0.19.172
netgear	rax70	*	any
netgear	rax78_firmware	*	<1.0.19.172
netgear	rax78	*	any
netgear	rbr10_firmware	*	any
netgear	rbr10	*	any
netgear	rbr20_firmware	*	any
netgear	rbr20	*	any
netgear	rbr350_firmware	*	<4.4.2.1
netgear	rbr350	*	any
netgear	rbr40_firmware	*	any
netgear	rbr40	*	any
netgear	rbr50_firmware	*	any
netgear	rbr50	*	any
netgear	rbs10_firmware	*	any
netgear	rbs10	*	any
netgear	rbs20_firmware	*	any
netgear	rbs20	*	any
netgear	rbs350_firmware	*	<4.4.2.1
netgear	rbs350	*	any
netgear	rbs40_firmware	*	any
netgear	rbs40	*	any
netgear	rbs50_firmware	*	any
netgear	rbs50	*	any
netgear	xr450_firmware	*	<2.3.3.136
netgear	xr450	*	any
netgear	xr500_firmware	*	<2.3.3.136
netgear	xr500	*	any

References 24

kb.netgear.com https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory

PatchVendor Advisory
netgear.com https://www.netgear.com/support/product/lbr1020/

Product
netgear.com https://www.netgear.com/support/product/lbr20/

Product
netgear.com https://www.netgear.com/support/product/r6700ax/

Product
netgear.com https://www.netgear.com/support/product/r7800/

Product
netgear.com https://www.netgear.com/support/product/r9000/

Product
netgear.com https://www.netgear.com/support/product/rax10/

Product
netgear.com https://www.netgear.com/support/product/rax120/

Product
netgear.com https://www.netgear.com/support/product/rax120v2/

Product
netgear.com https://www.netgear.com/support/product/rax36s/

Product
netgear.com https://www.netgear.com/support/product/rax70/

Product
netgear.com https://www.netgear.com/support/product/rax78/

Product
netgear.com https://www.netgear.com/support/product/rbr10/

Product
netgear.com https://www.netgear.com/support/product/rbr20/

Product
netgear.com https://www.netgear.com/support/product/rbr350/

Product
netgear.com https://www.netgear.com/support/product/rbr40/

Product
netgear.com https://www.netgear.com/support/product/rbr50/

Product
netgear.com https://www.netgear.com/support/product/rbs10/

Product
netgear.com https://www.netgear.com/support/product/rbs20/

Product
netgear.com https://www.netgear.com/support/product/rbs350/

Product
netgear.com https://www.netgear.com/support/product/rbs40/

Product
netgear.com https://www.netgear.com/support/product/rbs50/

Product
netgear.com https://www.netgear.com/support/product/xr450/

Product
netgear.com https://www.netgear.com/support/product/xr500/

Product

Remediation

kb.netgear.com https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory

PatchVendor Advisory