CVE-2026-0413

Summary

A buffer overflow vulnerability due to insufficient input validation in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.

Affected Software

VendorProductVersion RangeStatus
NETGEARRBE3700 < V12.1.2.1affected
NETGEARRBE7700 < V10.5.20.10affected
NETGEARRBR7500 < V7.2.8.5affected
NETGEARRBR8400 < V7.2.8.5affected
NETGEARRBR8500 < V7.2.8.5affected
NETGEARRBR8600 < V7.2.8.5affected
NETGEARRBRE9500 < V7.2.8.5affected
NETGEARRBRE9600 < V7.2.8.5affected
NETGEARRBS7500 < V7.2.8.5affected
NETGEARRBS8400 < V7.2.8.5affected
NETGEARRBS8500 < V7.2.8.5affected
NETGEARRBS8600 < V7.2.8.5affected
NETGEARRBSE9500 < V7.2.8.5affected
NETGEARRBSE9600 < V7.2.8.5affected

Weaknesses

  • CWE-121: CWE-121 Stack-based buffer overflow

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References