CVE-2026-0413
Last modified
CVE-2026-0413 is a medium-severity vulnerability rated 4.3/10 on the CVSS scale. A buffer overflow vulnerability due to insufficient input validation in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.. EPSS estimates a 0.32% chance of exploitation in the next 30 days.
Description
A buffer overflow vulnerability due to insufficient input validation in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.
Metrics
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Netgear | Rbe370 Firmware | < 12.1.2.1 |
| Netgear | Rbe770 Firmware | < 10.5.20.10 |
| Netgear | Rbr750 Firmware | < 7.2.8.5 |
| Netgear | Rbr840 Firmware | < 7.2.8.5 |
| Netgear | Rbr850 Firmware | < 7.2.8.5 |
| Netgear | Rbr860 Firmware | < 7.2.8.5 |
| Netgear | Rbre950 Firmware | < 7.2.8.5 |
| Netgear | Rbre960 Firmware | < 7.2.8.5 |
| Netgear | Rbs750 Firmware | < 7.2.8.5 |
| Netgear | Rbs840 Firmware | < 7.2.8.5 |
| Netgear | Rbs850 Firmware | < 7.2.8.5 |
| Netgear | Rbs860 Firmware | < 7.2.8.5 |
| Netgear | Rbse950 Firmware | < 7.2.8.5 |
| Netgear | Rbse960 Firmware | < 7.2.8.5 |
References
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2026-0413?
How severe is CVE-2026-0413?
How do I fix CVE-2026-0413?
Are you affected by CVE-2026-0413?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST