CVE-2026-0415
Last modified
CVE-2026-0415 is a medium-severity vulnerability rated 4.3/10 on the CVSS scale. Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.. EPSS estimates a 0.23% chance of exploitation in the next 30 days.
Description
Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.
Metrics
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Netgear | Rbe970 Firmware | < 9.12.4.9 |
| Netgear | Rbr750 Firmware | < 7.2.8.5 |
| Netgear | Rbr840 Firmware | < 7.2.8.5 |
| Netgear | Rbr850 Firmware | < 7.2.8.5 |
| Netgear | Rbr860 Firmware | < 7.2.8.5 |
| Netgear | Rbre950 Firmware | < 7.2.8.5 |
| Netgear | Rbre960 Firmware | < 7.2.8.5 |
| Netgear | Rbs750 Firmware | < 7.2.8.5 |
| Netgear | Rbs840 Firmware | < 7.2.8.5 |
| Netgear | Rbs850 Firmware | < 7.2.8.5 |
| Netgear | Rbs860 Firmware | < 7.2.8.5 |
| Netgear | Rbse950 Firmware | < 7.2.8.5 |
| Netgear | Rbse960 Firmware | < 7.2.8.5 |
References
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2026-0415?
How severe is CVE-2026-0415?
How do I fix CVE-2026-0415?
Are you affected by CVE-2026-0415?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST