Buffer overflow vulnerability in certain NETGEAR Nighthawk routers

Summary

CVE	CVE-2026-0413
State	PUBLISHED
Assigner	NETGEAR
Source Priority	CVE Program / NVD first with legacy fallback
Published	2026-06-09 17:16:58 UTC
Updated	2026-06-10 14:16:30 UTC
Description	Insufficient input validation of buffers vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.

Risk And Classification

Primary CVSS: v4.0 4.3 MEDIUM from a2826606-91e7-4eb6-899e-8484bd4575d5

CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Problem Types: CWE-121 | CWE-121 CWE-121 Stack-based buffer overflow

Version	Source	Type	Score	Severity	Vector
4.0	a2826606-91e7-4eb6-899e-8484bd4575d5	Secondary	4.3	MEDIUM	`CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/C...`
4.0	CNA	CVSS	4.3	MEDIUM	`CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U`

CVSS v4.0 Breakdown

Attack Vector

Adjacent

Attack Complexity

Low

Attack Requirements

None

Privileges Required

High

User Interaction

None

Confidentiality

None

Integrity

High

Availability

None

Sub Conf.

None

Sub Integrity

None

Sub Availability

None

CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Vendor Declared Affected Products

Source	Vendor	Product	Version	Platforms
CNA	NETGEAR	RBE370	affected V12.1.2.1 custom	Not specified
CNA	NETGEAR	RBE770	affected V10.5.20.10 custom	Not specified
CNA	NETGEAR	RBR750	affected V7.2.8.5 custom	Not specified
CNA	NETGEAR	RBR840	affected V7.2.8.5 custom	Not specified
CNA	NETGEAR	RBR850	affected V7.2.8.5 custom	Not specified
CNA	NETGEAR	RBR860	affected V7.2.8.5 custom	Not specified
CNA	NETGEAR	RBRE950	affected V7.2.8.5 custom	Not specified
CNA	NETGEAR	RBRE960	affected V7.2.8.5 custom	Not specified
CNA	NETGEAR	RBS750	affected V7.2.8.5 custom	Not specified
CNA	NETGEAR	RBS840	affected V7.2.8.5 custom	Not specified
CNA	NETGEAR	RBS850	affected V7.2.8.5 custom	Not specified
CNA	NETGEAR	RBS860	affected V7.2.8.5 custom	Not specified
CNA	NETGEAR	RBSE950	affected V7.2.8.5 custom	Not specified
CNA	NETGEAR	RBSE960	affected V7.2.8.5 custom	Not specified

References

Reference	Source	Link	Tags
www.netgear.com/support/product/rbre950	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory	a2826606-91e7-4eb6-899e-8484bd4575d5	kb.netgear.com
www.netgear.com/support/product/rbs840	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbr860	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbs750	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbse960	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbs850	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbr750	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbs860	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbe372	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbre960	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbr850	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbe770	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbse950	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
www.netgear.com/support/product/rbr840	a2826606-91e7-4eb6-899e-8484bd4575d5	www.netgear.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

Vendor Comments And Credit

Discovery Credit

CNA: tmotfl (en)

Additional Advisory Data

Solutions

CNA: Devices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in: ProductFixed VersionRBE37X Orbi Dual-band Mesh WiFi 7 System – 370 Series V12.1.2.1 https://www.netgear.com/support/product/rbe372/ RBE77X Orbi Tri-band Mesh WiFi 7 Add-on Satellite V10.5.20.10 https://www.netgear.com/support/product/rbe770/ RBR750 Orbi WiFi 6 Router AX4200 V7.2.8.5 https://www.netgear.com/support/product/rbr750/ RBR840 (EoS) Orbi WiFi 6 System AX5700 V7.2.8.5 https://www.netgear.com/support/product/rbr840/ RBR850 Orbi WiFi 6 Router AX6000 V7.2.8.5 https://www.netgear.com/support/product/rbr850/ RBR860 Orbi Tri-band Mesh WiFi 6 Router – 860 Series V7.2.8.5 https://www.netgear.com/support/product/rbr860/ RBRE950 Orbi Quad-band Mesh WiFi 6E Router V7.2.8.5 https://www.netgear.com/support/product/rbre950/ RBRE960 Orbi Quad-band Mesh WiFi 6E Router V7.2.8.5 https://www.netgear.com/support/product/rbre960/ RBS750 Orbi WiFi 6 Add-on Satellite AX4200 V7.2.8.5 https://www.netgear.com/support/product/rbs750/ RBS840 (EoS) Orbi WiFi 6 Add-on Satellite AX5700 V7.2.8.5 https://www.netgear.com/support/product/rbs840/ RBS850 Orbi WiFi 6 Satellite AX6000 V7.2.8.5 https://www.netgear.com/support/product/rbs850/ RBS860 Orbi Tri-band Mesh WiFi 6 Add-on Satellite – 860 Series V7.2.8.5 https://www.netgear.com/support/product/rbs860/ RBSE950 Orbi Quad-band Mesh WiFi 6E Add-on Satellite V7.2.8.5 https://www.netgear.com/support/product/rbse950/ RBSE960 Orbi Quad-band Mesh WiFi 6E Add-on Satellite V7.2.8.5 https://www.netgear.com/support/product/rbse960/ Models marked (EoS) have reached End-of-Support phase, and no security updates are planned. NETGEAR strongly recommends that you retire these devices and upgrade to a newer NETGEAR device for continued security support.

There are currently no legacy QID mappings associated with this CVE.