CVE-2026-0418
MEDIUMCertain NETGEAR devices allow administrators to tamper with system
Title source: cnaDescription
Insufficient configuration management in the listed devices allows authenticated administrators connected to the local network to tamper with the system.
References (36)
Core 36
Core References
Patch product
patch
https://www.netgear.com/support/product/ms80/
Patch product
patch
https://www.netgear.com/support/product/rax45/
Patch product
patch
https://www.netgear.com/support/product/cbr750/
Patch product
patch
https://www.netgear.com/support/product/rax15/
Patch product
patch
https://www.netgear.com/support/product/ex6120/
Patch product
patch
https://www.netgear.com/support/product/rax200/
Patch product
patch
https://www.netgear.com/support/product/rax38v2/
Patch product
patch
https://www.netgear.com/support/product/rax75/
Patch product
patch
https://www.netgear.com/support/product/mr60/
Patch product
patch
https://www.netgear.com/support/product/rax80/
Patch product
patch
https://www.netgear.com/support/product/rbr840/
Patch product
patch
https://www.netgear.com/support/product/rbr750/
Patch product
patch
https://www.netgear.com/support/product/rbs750/
Patch product
patch
https://www.netgear.com/support/product/ex6130/
Patch product
patch
https://www.netgear.com/support/product/rbr850/
Patch product
patch
https://www.netgear.com/support/product/rbs840/
Patch product
patch
https://www.netgear.com/support/product/rbs850/
Patch product
patch
https://www.netgear.com/support/product/ms60/
Patch product
patch
https://www.netgear.com/support/product/rs700/
Patch product
patch
https://www.netgear.com/support/product/mr70/
Patch product
patch
https://www.netgear.com/support/product/mr80/
Patch product
patch
https://www.netgear.com/support/product/ms70/
Patch product
patch
https://www.netgear.com/support/product/rax35v2/
Patch product
patch
https://www.netgear.com/support/product/rax20/
Patch product
patch
https://www.netgear.com/support/product/rax40v2/
Patch product
patch
https://www.netgear.com/support/product/rax42/
Patch product
patch
https://www.netgear.com/support/product/rax43/
Patch product
patch
https://www.netgear.com/support/product/rax50/
Patch product
patch
https://www.netgear.com/support/product/raxe500/
Patch product
patch
https://www.netgear.com/support/product/rax48/
Patch product
patch
https://www.netgear.com/support/product/rax50s/
Patch product
patch
https://www.netgear.com/support/product/rbse960/
Patch product
patch
https://www.netgear.com/support/product/raxe450/
Patch product
patch
https://www.netgear.com/support/product/rbre960/
Patch product
patch
https://www.netgear.com/support/product/xr1000/
Vendor Advisory vendor-advisory
https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory
Scores
CVSS v4
4.3
EPSS
0.0026
EPSS Percentile
16.8%
CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:U/V:D/RE:L/U:Amber
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-15
Status
published
Products (35)
NETGEAR/CBR750
< v4.6.14.4
NETGEAR/EX6120
< 1.0.0.72
NETGEAR/EX6130
< 1.0.0.54
NETGEAR/MR60
< V1.1.7.128
NETGEAR/MR70
< V1.0.3.28
NETGEAR/MR80
< V1.1.7.6
NETGEAR/MS60
< V1.1.7.128
NETGEAR/MS70
< V1.0.3.28
NETGEAR/MS80
< V1.1.7.6
NETGEAR/RAX15
< 1.0.18.144
... and 25 more
Published
Jun 09, 2026
Tracked Since
Jun 09, 2026