EIP-2026-101875

PRE-CVE

Netgear Wireless Cable Modem Gateway - Authentication Bypass / Cross-Site Request Forgery

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101875. PoCs published by Sense of Security.

AI-analyzed exploit summary This exploit demonstrates an authentication bypass and CSRF vulnerability in NETGEAR CG814WG devices. It allows remote attackers to enable the remote management interface and change admin credentials without authentication.

Description

Netgear Wireless Cable Modem Gateway - Authentication Bypass / Cross-Site Request Forgery

Exploits (1)

exploitdb WORKING POC

by Sense of Security · textwebappshardware

https://www.exploit-db.com/exploits/17874

View Code ZIP pw:eip

This exploit demonstrates an authentication bypass and CSRF vulnerability in NETGEAR CG814WG devices. It allows remote attackers to enable the remote management interface and change admin credentials without authentication.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: NETGEAR Wireless Cable Modem Gateway CG814WG (Hardware 1.03, Software V3.9.26 R14)

No auth needed

Prerequisites: Victim must be on the same network segment as the device · Victim must visit a malicious webpage

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026