CVE-2026-0416

Summary

An insufficient input validation vulnerability in certain NETGEAR router models as listed allows an authenticated administrator with local network access to submit crafted input that bypasses intended management interface restrictions, resulting in unauthorized modification of protected router software or functionality.

Affected Software

VendorProductVersion RangeStatus
NETGEARRAXE450V1.0.12.96 < V1.2.14.114affected
NETGEARRAXE500V1.0.12.96 < V1.2.14.114affected

Weaknesses

  • CWE-20: CWE-20 Improper input validation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References