Authentication Bypass in NETGEAR Orbi Devices_CVE-2026-0405

6.1 / 10

MEDIUM

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Amber

Description

An authentication bypass vulnerability in NETGEAR Orbi devices allows
users connected to the local network to access the router web interface
as an admin.

Basic Information

ID CVE-2026-0405

Source NETGEAR

Published Jan 13, 2026 at 16:00

Modified Jan 13, 2026 at 16:21

Affected Product

Vendor NETGEAR

Product RBE970

Affected Versions NETGEAR RBE970 0
NETGEAR RBE971 0
NETGEAR CBR750 0
NETGEAR NBR750 0
NETGEAR RBE770 0
NETGEAR RBE771 0
NETGEAR RBE772 0
NETGEAR RBE773 0
NETGEAR RBR750 0
NETGEAR RBS750 0
NETGEAR RBR840 0
NETGEAR RBS840 0
NETGEAR RBR850 0
NETGEAR RBS850 0
NETGEAR RBR860 0
NETGEAR RBS860 0
NETGEAR RBRE950 0
NETGEAR RBSE950 0
NETGEAR RBRE960 0
NETGEAR RBSE960 0
NETGEAR RBE370 0
NETGEAR RBE371 0
NETGEAR RBE372 0
NETGEAR RBE373 0
NETGEAR RBE374 0

CWE Classification

CWE-287

References

{
    "lastseen": "",
    "description": "An authentication bypass vulnerability in NETGEAR Orbi devices allows \nusers connected to the local network to access the router web interface \nas an admin.",
    "published": "2026-01-13T16:00:48.296Z",
    "modified": "2026-01-13T16:21:13.069Z",
    "type": "cve",
    "title": "Authentication Bypass in NETGEAR Orbi Devices",
    "source": "NETGEAR",
    "references": "https://www.netgear.com/support/product/rbe971\nhttps://www.netgear.com/support/product/rbe970\nhttps://www.netgear.com/support/product/cbr750\nhttps://www.netgear.com/support/product/nbr750\nhttps://www.netgear.com/support/product/rbe770\nhttps://www.netgear.com/support/product/rbe771\nhttps://www.netgear.com/support/product/rbe772\nhttps://www.netgear.com/support/product/rbe773\nhttps://www.netgear.com/support/product/rbr750\nhttps://www.netgear.com/support/product/rbs750\nhttps://www.netgear.com/support/product/rbr840\nhttps://www.netgear.com/support/product/rbs840\nhttps://www.netgear.com/support/product/rbr850\nhttps://www.netgear.com/support/product/rbs850\nhttps://www.netgear.com/support/product/rbr860\nhttps://www.netgear.com/support/product/rbs860\nhttps://www.netgear.com/support/product/rbre950\nhttps://www.netgear.com/support/product/rbse950\nhttps://www.netgear.com/support/product/rbre960\nhttps://www.netgear.com/support/product/rbse960\nhttps://www.netgear.com/support/product/rbe370\nhttps://www.netgear.com/support/product/rbe371\nhttps://www.netgear.com/support/product/rbe372\nhttps://www.netgear.com/support/product/rbe373\nhttps://www.netgear.com/support/product/rbe374\nhttps://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory",
    "id": "CVE-2026-0405",
    "bulletinFamily": "",
    "cwe": [
        "CWE-287"
    ],
    "cvelist": null,
    "sourceData": "NETGEAR RBE970 0\nNETGEAR RBE971 0\nNETGEAR CBR750 0\nNETGEAR NBR750 0\nNETGEAR RBE770 0\nNETGEAR RBE771 0\nNETGEAR RBE772 0\nNETGEAR RBE773 0\nNETGEAR RBR750 0\nNETGEAR RBS750 0\nNETGEAR RBR840 0\nNETGEAR RBS840 0\nNETGEAR RBR850 0\nNETGEAR RBS850 0\nNETGEAR RBR860 0\nNETGEAR RBS860 0\nNETGEAR RBRE950 0\nNETGEAR RBSE950 0\nNETGEAR RBRE960 0\nNETGEAR RBSE960 0\nNETGEAR RBE370 0\nNETGEAR RBE371 0\nNETGEAR RBE372 0\nNETGEAR RBE373 0\nNETGEAR RBE374 0",
    "sourceHref": "",
    "cvss": {
        "score": 6.1,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Amber",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "RBE970",
    "version": "0",
    "vendor": "NETGEAR",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}