CVE-2026-9212

Description

Insufficient authentication and input validation in the listed NETGEAR models allow users connected to the local network to execute commands impacting product's confidentiality or change certain configurations.

PUBLISHED Reserved 2026-05-21 | Published 2026-06-09 | Updated 2026-06-10 | Assigner NETGEAR

Problem types

CWE-306 Missing authentication for critical function

CWE-20 Improper input validation

Product status

Credits

ZeroZenx Labs finder

References

www.netgear.com/support/product/lbr20/ product patch

www.netgear.com/support/product/lbr1020/ product patch

www.netgear.com/support/product/r6700ax/ product patch

www.netgear.com/support/product/r9000/ product patch

www.netgear.com/support/product/r7800/ product patch

www.netgear.com/support/product/rax10/ product patch

www.netgear.com/support/product/rax120/ product patch

www.netgear.com/support/product/rax78/ product patch

www.netgear.com/support/product/rax120v2/ product patch

www.netgear.com/support/product/rax70/ product patch

www.netgear.com/support/product/rbr10/ product patch

www.netgear.com/support/product/rbr350/ product patch

www.netgear.com/support/product/rbr40/ product patch

www.netgear.com/support/product/rbr50/ product patch

www.netgear.com/support/product/rbs10/ product patch

www.netgear.com/support/product/rbs20/ product patch

www.netgear.com/support/product/rax36s/ product patch

www.netgear.com/support/product/rbr20/ product patch

www.netgear.com/support/product/rbs50/ product patch

www.netgear.com/support/product/rbs350/ product patch

www.netgear.com/support/product/xr500/ product patch

www.netgear.com/support/product/rbs40/ product patch

www.netgear.com/support/product/xr450/ product patch

kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory vendor-advisory

cve.org (CVE-2026-9212)

nvd.nist.gov (CVE-2026-9212)

Download JSON