Description
Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.
Problem types
CWE-20 Insufficient input validation
Product status
Any version before V9.12.4.9
Any version before V7.2.8.5
Any version before V7.2.8.5
Any version before V7.2.8.5
Any version before V7.2.8.5
Any version before V7.2.8.5
Any version before V7.2.8.5
Any version before V7.2.8.5
Any version before V7.2.8.5
Any version before V7.2.8.5
Any version before V7.2.8.5
Any version before V7.2.8.5
Any version before V7.2.8.5
References
www.netgear.com/support/product/rbe970/
www.netgear.com/support/product/rbre950/
www.netgear.com/support/product/rbr850/
www.netgear.com/support/product/rbs840/
www.netgear.com/support/product/rbr750/
www.netgear.com/support/product/rbs750/
www.netgear.com/support/product/rbr840/
www.netgear.com/support/product/rbr860/
www.netgear.com/support/product/rbre960/
www.netgear.com/support/product/rbs850/
www.netgear.com/support/product/rbs860/
www.netgear.com/support/product/rbse950/
www.netgear.com/support/product/rbse960/
kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory