CVE-2026-0410

Summary

Authenticated administrators connected to the local network can gain elevated access to the router and make unauthorized changes to router software and functionality.

Affected Software

VendorProductVersion RangeStatus
NETGEARR70000 < V1.0.11.216affected
NETGEARRAX200 < V1.0.18.144affected
NETGEARRAX35v20 < V1.0.16.132affected
NETGEARRAX410 < V1.0.16.132affected
NETGEARRAX41v20 < V1.1.4.28affected
NETGEARRAX420 < V1.0.16.132affected
NETGEARRAX42v20 < V1.1.4.28affected
NETGEARRAX430 < V1.0.16.132affected
NETGEARRAX43v20 < V1.1.4.28affected
NETGEARRAX450 < V1.0.16.132affected
NETGEARRAX49S0 < V1.1.4.28affected
NETGEARRAX500 < V1.0.16.132affected
NETGEARRAX50S0 < V1.0.16.132affected
NETGEARRAX50v20 < V1.1.4.28affected
NETGEARRAX54Sv20 < V1.1.4.28affected
NETGEARRAX54v20 < V1.1.4.28affected
NETGEARRAXE4500 < V1.2.14.114affected
NETGEARRAXE5000 < V1.2.14.114affected
NETGEARXR10000 < V1.1.0.22affected
NETGEARXR1000v20 < V1.1.0.22affected

Weaknesses

  • CWE-20: CWE-20 Insufficient input validation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References