CVE 5.6 MEDIUM

Insufficient authentication and input validation in certain NETGEAR products_CVE-2026-9212

June 9, 2026 invoker category_cve
5.6 / 10
MEDIUM
CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U

Description

Insufficient authentication and input validation in the listed NETGEAR models allow users connected to the local network to execute commands impacting product's confidentiality or change certain configurations.

Basic Information

ID CVE-2026-9212
Source NETGEAR
Published Jun 9, 2026 at 15:50

Affected Product

Vendor NETGEAR
Product LBR1020
Affected Versions NETGEAR LBR1020 0
NETGEAR LBR20 0
NETGEAR R6700AX 0
NETGEAR R7800 0
NETGEAR R9000 0
NETGEAR RAX10 0
NETGEAR RAX10v2 0
NETGEAR RAX120 0
NETGEAR RAX120v1 0
NETGEAR RAX120v2 0
NETGEAR RAX36S 0
NETGEAR RAX70 0
NETGEAR RAX78 0
NETGEAR RBR10 0
NETGEAR RBR20 0
NETGEAR RBR350 0
NETGEAR RBR40 0
NETGEAR RBR50 0
NETGEAR RBS10 0
NETGEAR RBS20 0
NETGEAR RBS350 0
NETGEAR RBS40 0
NETGEAR RBS50 0
NETGEAR XR450 0
NETGEAR XR500 0

CWE Classification

CWE-306 CWE-20

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.