netgear

1,342 tracked vulnerabilities.

CVE-2026-9213 HIGH
Insufficient input validation in certain NETGEAR routers
Jun 09, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-9212 HIGH
Insufficient authentication and input validation in certain NETGEAR products
Jun 09, 2026
CVSS 8.0
EPSS 0.00
CVE-2026-9211 HIGH
Certain NETGEAR routers allow unauthenticated users to gain control of the router
Jun 09, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-9210 MEDIUM
Certain NETGEAR routers allow authenticated administrators to gain unintended control of the router
Jun 09, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-3088 MEDIUM
Unauthenticated users can disrupt router operation
Jun 09, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-0420 MEDIUM
NETGEAR RAX120v1 - Missing TLS Certificate Validation in ReadyCloud Client App
Jun 09, 2026
CVSS 5.9
EPSS 0.00
CVE-2026-0419 HIGH
NETGEAR JR6150 - Local WiFi OS Command Injection
Jun 09, 2026
CVSS 8.0
EPSS 0.00
CVE-2026-0418 MEDIUM
Certain NETGEAR devices allow administrators to tamper with system
Jun 09, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-0417 MEDIUM
Insufficient input validation in certain NETGEAR routers
Jun 09, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-0416 MEDIUM
RAXE450 and RAXE500 routers allow administrators to modify router functionality beyond intended limits
Jun 09, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-0415 MEDIUM
NETGEAR Orbi Routers - Authenticated Unauthorized Software Modification
Jun 09, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-0414 MEDIUM
NETGEAR RBE97x - Arbitrary Code Execution Vulnerability Exists in RBE970
Jun 09, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-0413 MEDIUM
NETGEAR Routers - Authenticated Buffer Overflow
Jun 09, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-0412 MEDIUM
NETGEAR JR6150 Web UI - Authenticated Unauthorized Software Modification
Jun 09, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-0411 HIGH
NETGEAR Orbi Satellites - Administrator Access Information Disclosure
Jun 09, 2026
CVSS 8.0
EPSS 0.00
CVE-2026-0410 MEDIUM
Insufficient input validation in certain NETGEAR routers
Jun 09, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-0409 MEDIUM
Netgear Orbi 370 Series Remote Code Execution vulnerability
Jun 09, 2026
CVSS 6.4
EPSS 0.00
CVE-2026-24714 HIGH
NETGEAR products - Unauthenticated Telnet Service Activation via Magic Packet
Jan 30, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-0408 HIGH
NETGEAR WiFi Range Extenders - Path Traversal
Jan 13, 2026
CVSS 8.0
EPSS 0.00
CVE-2026-0407 HIGH
NETGEAR WiFi Range Extenders - Auth Bypass
Jan 13, 2026
CVSS 8.0
EPSS 0.00
CVE-2026-0406 HIGH
NETGEAR XR1000v2 - Command Injection
Jan 13, 2026
CVSS 8.0
EPSS 0.00
CVE-2026-0405 HIGH
NETGEAR Orbi Firmware - Unauthenticated Authentication Bypass
Jan 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-0404 HIGH
NETGEAR Orbi Firmware < 7.2.8.5 - Authenticated OS Command Injection via DHCPv6
Jan 13, 2026
CVSS 8.0
EPSS 0.01
CVE-2026-0403 HIGH
NETGEAR Orbi Routers - OS Command Injection via Insufficient Input Validation
Jan 13, 2026
CVSS 8.0
EPSS 0.00
CVE-2025-50526 CRITICAL
Netgear EX8000 V1.0.0.126 - Command Injection
Dec 23, 2025
CVSS 9.8
EPSS 0.01