CVE-2026-0411 | THREATINT

Description

An information disclosure vulnerability in the NETGEAR Orbi satellites could allow a user connected to your network to gain administrator access to the Orbi router. The listed NETGEAR models are affected by this vulnerability. Orbi WiFi Systems without satellite devices are not impacted by this issue.

PUBLISHED Reserved 2025-12-03 | Published 2026-06-09 | Updated 2026-06-10 | Assigner NETGEAR

MEDIUM: 4.2CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H/E:U

Problem types

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

Product status

Default status

unaffected

Any version before 6.3.8.11

affected

Default status

unaffected

Any version before V4.4.2.2

affected

Default status

unaffected

Any version before V6.3.8.11

affected

Default status

unaffected

Any version before V4.4.2.2

affected

Default status

unaffected

Any version before V6.3.8.11

affected

References

www.netgear.com/support/product/rbr350/ product patch

www.netgear.com/support/product/rbs760/ product patch

www.netgear.com/support/product/rbs350/ product patch

www.netgear.com/support/product/rbr760/ product patch

www.netgear.com/support/product/rbe970/ product patch

kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory vendor-advisory

cve.org (CVE-2026-0411)

nvd.nist.gov (CVE-2026-0411)

Download JSON

help @ threatint.eu