Insufficient input validation in certain NETGEAR routers_CVE-2026-9213

6.9 / 10

MEDIUM

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U

Description

A vulnerability in the affected NETGEAR gaming routers allows attackers with the ability to intercept and tamper traffic between the router and the Internet, to execute code on the device.

Basic Information

ID CVE-2026-9213

Source NETGEAR

Published Jun 9, 2026 at 15:50

Affected Product

Vendor NETGEAR

Product MR70

Affected Versions NETGEAR MR70 0
NETGEAR MS70 0
NETGEAR RAXE500 0
NETGEAR XR1000 0

CWE Classification

CWE-20

References

{
    "lastseen": "",
    "description": "A vulnerability in\u00a0the affected\u00a0NETGEAR gaming routers allows\u00a0attackers with\u00a0the ability to intercept and tamper traffic between\u00a0the router and the Internet, to execute code on the device.",
    "published": "2026-06-09T15:50:46.744Z",
    "modified": "2026-06-09T15:50:46.744Z",
    "type": "cve",
    "title": "Insufficient input validation in certain NETGEAR routers",
    "source": "NETGEAR",
    "references": "https://www.netgear.com/support/product/mr70/\nhttps://www.netgear.com/support/product/ms70/\nhttps://www.netgear.com/support/product/raxe500/\nhttps://www.netgear.com/support/product/xr1000/",
    "id": "CVE-2026-9213",
    "bulletinFamily": "",
    "cwe": [
        "CWE-20"
    ],
    "cvelist": null,
    "sourceData": "NETGEAR MR70 0\nNETGEAR MS70 0\nNETGEAR RAXE500 0\nNETGEAR XR1000 0",
    "sourceHref": "",
    "cvss": {
        "score": 6.9,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "MR70",
    "version": "0",
    "vendor": "NETGEAR",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}