{"api_version":"1","generated_at":"2026-06-10T20:52:41+00:00","cve":"CVE-2026-9212","urls":{"html":"https://cve.report/CVE-2026-9212","api":"https://cve.report/api/cve/CVE-2026-9212.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-9212","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-9212"},"summary":{"title":"Insufficient authentication and input validation in certain NETGEAR products","description":"Insufficient authentication and input validation in the listed NETGEAR models allow users connected to the local network to execute commands impacting product's confidentiality or change certain configurations.","state":"PUBLISHED","assigner":"NETGEAR","published_at":"2026-06-09 17:17:51","updated_at":"2026-06-10 16:17:18"},"problem_types":["CWE-20","CWE-306","CWE-306 CWE-306 Missing authentication for critical function","CWE-20 CWE-20 Improper input validation"],"metrics":[{"version":"4.0","source":"a2826606-91e7-4eb6-899e-8484bd4575d5","type":"Secondary","score":"5.6","severity":"MEDIUM","vector":"CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","data":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"UNREPORTED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}},{"version":"4.0","source":"CNA","type":"CVSS","score":"5.6","severity":"MEDIUM","vector":"CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U","data":{"Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","Safety":"NOT_DEFINED","attackComplexity":"LOW","attackRequirements":"NONE","attackVector":"ADJACENT","baseScore":5.6,"baseSeverity":"MEDIUM","exploitMaturity":"UNREPORTED","privilegesRequired":"LOW","providerUrgency":"NOT_DEFINED","subAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"NONE","userInteraction":"NONE","valueDensity":"NOT_DEFINED","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U","version":"4.0","vulnAvailabilityImpact":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnerabilityResponseEffort":"NOT_DEFINED"}}],"references":[{"url":"https://www.netgear.com/support/product/rbs20/","name":"https://www.netgear.com/support/product/rbs20/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rbr50/","name":"https://www.netgear.com/support/product/rbr50/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory","name":"https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rbs10/","name":"https://www.netgear.com/support/product/rbs10/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/r9000/","name":"https://www.netgear.com/support/product/r9000/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rax10/","name":"https://www.netgear.com/support/product/rax10/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rbs40/","name":"https://www.netgear.com/support/product/rbs40/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rbr350/","name":"https://www.netgear.com/support/product/rbr350/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/lbr20/","name":"https://www.netgear.com/support/product/lbr20/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rax70/","name":"https://www.netgear.com/support/product/rax70/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/xr500/","name":"https://www.netgear.com/support/product/xr500/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rax120/","name":"https://www.netgear.com/support/product/rax120/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/r7800/","name":"https://www.netgear.com/support/product/r7800/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rbs350/","name":"https://www.netgear.com/support/product/rbs350/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rax36s/","name":"https://www.netgear.com/support/product/rax36s/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rax78/","name":"https://www.netgear.com/support/product/rax78/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rbr40/","name":"https://www.netgear.com/support/product/rbr40/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rax120v2/","name":"https://www.netgear.com/support/product/rax120v2/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rbr10/","name":"https://www.netgear.com/support/product/rbr10/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rbr20/","name":"https://www.netgear.com/support/product/rbr20/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/r6700ax/","name":"https://www.netgear.com/support/product/r6700ax/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/xr450/","name":"https://www.netgear.com/support/product/xr450/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/rbs50/","name":"https://www.netgear.com/support/product/rbs50/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.netgear.com/support/product/lbr1020/","name":"https://www.netgear.com/support/product/lbr1020/","refsource":"a2826606-91e7-4eb6-899e-8484bd4575d5","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-9212","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-9212","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"NETGEAR","product":"LBR1020","version":"affected V2.6.4.60 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"LBR20","version":"affected V2.7.6.8 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"R6700AX","version":"affected * custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"R7800","version":"affected V1.0.4.96 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"R9000","version":"affected V1.0.6.46 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RAX10","version":"affected V1.0.5.50 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RAX10v2","version":"affected V1.0.5.50 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RAX120","version":"affected V1.2.10.56 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RAX120v1","version":"affected V1.2.10.56 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RAX120v2","version":"affected V1.2.10.56 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RAX36S","version":"affected V1.0.5.50 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RAX70","version":"affected V1.0.19.172 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RAX78","version":"affected V1.0.19.172 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RBR10","version":"affected 2.7.6.6 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RBR20","version":"affected 2.7.6.6 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RBR350","version":"affected V4.4.2.1 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RBR40","version":"affected 2.7.6.6 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RBR50","version":"affected 2.7.6.6 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RBS10","version":"affected 2.7.6.6 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RBS20","version":"affected 2.7.6.6 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RBS350","version":"affected V4.4.2.1 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RBS40","version":"affected 2.7.6.6 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"RBS50","version":"affected 2.7.6.6 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"XR450","version":"affected V2.3.3.136 custom","platforms":[]},{"source":"CNA","vendor":"NETGEAR","product":"XR500","version":"affected v2.3.3.136 custom","platforms":[]}],"timeline":[],"solutions":[{"source":"CNA","title":"","value":"Devices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:\n\nProductFixed VersionLBR1020 (EoS) Orbi 4GX AC1200 Dual-Band Mesh WiFi Router V2.6.4.60 https://www.netgear.com/support/product/lbr1020/ LBR20 Orbi LTE Tri-band WiFi Router V2.7.6.8 https://www.netgear.com/support/product/lbr20/ R6700AX (EoS) 4-Stream AX1800 WiFi 6 RouterEOSR7800 (EoS) Nighthawk X4S AC2600 Smart WiFi Router V1.0.4.96 https://www.netgear.com/support/product/r7800/ R9000 (EoS) Nighthawk X10 AD7200 Smart WiFi Router V1.0.6.46 https://www.netgear.com/support/product/r9000/ RAX10 4-Stream AX1800 WiFi 6 Router V1.0.5.50 https://www.netgear.com/support/product/rax10/ RAX10v2V1.0.5.50RAX120 (EoS) Nighthawk AX12 12-Stream WiFi Router V1.2.10.56 https://www.netgear.com/support/product/rax120/ RAX120v1 (EoS)V1.2.10.56RAX120v2 Nighthawk AX12 12-Stream AX6000 WiFi Router V1.2.10.56 https://www.netgear.com/support/product/rax120v2/ RAX36S Nighthawk AX4 4-Stream AX3000 WiFi Router V1.0.5.50 https://www.netgear.com/support/product/rax36s/ RAX70 Nighthawk Tri-band AX8 8-Stream AX6600 WiFi 6 Router V1.0.19.172 https://www.netgear.com/support/product/rax70/ RAX78 Nighthawk AX8 8-Stream AX6200 Tri-Band WiFi Router V1.0.19.172 https://www.netgear.com/support/product/rax78/ RBR10 (EoS) Orbi AC1200 Dual-Band Mesh WiFi RouterEOSRBR20 (EoS) Orbi AC2200 Tri-band WiFi RouterEOSRBR350 Orbi AX1800 WiFi 6 Dual-band Mesh Router V4.4.2.1 https://www.netgear.com/support/product/rbr350/ RBR40 (EoS) Orbi AC2200 Tri-band WiFi RouterEOSRBR50 (EoS) Orbi AC3000 Tri-band WiFi RouterEOSRBS10 (EoS) Orbi AC1200 Dual-Band Mesh WiFi Add-on SatelliteEOSRBS20 (EoS) Orbi AC2200 Tri-band WiFi Add-on SatelliteEOSRBS350 Orbi AX1800 WiFi 6 Dual-band Mesh Add-on Satellite V4.4.2.1 https://www.netgear.com/support/product/rbs350/ RBS40 (EoS) Orbi AC2200 Tri-band WiFi Add-on SatelliteEOSRBS50 (EoS) Orbi AC3000 Tri-band WiFi Add-on SatelliteEOSXR450 (EoS) Nighthawk Pro Gaming Router V2.3.3.136 https://www.netgear.com/support/product/xr450/ XR500 (EoS) Nighthawk Pro Gaming Router v2.3.3.136 https://www.netgear.com/support/product/xr500/ \n\nModels marked (EoS) have reached End-of-Support phase, and no security updates are planned. NETGEAR strongly recommends that you retire these devices and upgrade to a newer NETGEAR device for continued security support.","time":"","lang":"en"}],"workarounds":[],"exploits":[],"credits":[{"source":"CNA","value":"ZeroZenx Labs","lang":"en"}],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"metrics":[{"other":{"content":{"id":"CVE-2026-9212","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","timestamp":"2026-06-10T03:59:30.458680Z","version":"2.0.3"},"type":"ssvc"}}],"providerMetadata":{"dateUpdated":"2026-06-10T13:32:49.023Z","orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP"},"title":"CISA ADP Vulnrichment"}],"cna":{"affected":[{"defaultStatus":"unaffected","product":"LBR1020","vendor":"NETGEAR","versions":[{"lessThan":"V2.6.4.60","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"LBR20","vendor":"NETGEAR","versions":[{"lessThan":"V2.7.6.8","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"R6700AX","vendor":"NETGEAR","versions":[{"lessThanOrEqual":"*","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"R7800","vendor":"NETGEAR","versions":[{"lessThan":"V1.0.4.96","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"R9000","vendor":"NETGEAR","versions":[{"lessThan":"V1.0.6.46","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RAX10","vendor":"NETGEAR","versions":[{"lessThan":"V1.0.5.50","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RAX10v2","vendor":"NETGEAR","versions":[{"lessThan":"V1.0.5.50","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RAX120","vendor":"NETGEAR","versions":[{"lessThan":"V1.2.10.56","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RAX120v1","vendor":"NETGEAR","versions":[{"lessThan":"V1.2.10.56","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RAX120v2","vendor":"NETGEAR","versions":[{"lessThan":"V1.2.10.56","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RAX36S","vendor":"NETGEAR","versions":[{"lessThan":"V1.0.5.50","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RAX70","vendor":"NETGEAR","versions":[{"lessThan":"V1.0.19.172","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RAX78","vendor":"NETGEAR","versions":[{"lessThan":"V1.0.19.172","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBR10","vendor":"NETGEAR","versions":[{"lessThanOrEqual":"2.7.6.6","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBR20","vendor":"NETGEAR","versions":[{"lessThanOrEqual":"2.7.6.6","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBR350","vendor":"NETGEAR","versions":[{"lessThan":"V4.4.2.1","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBR40","vendor":"NETGEAR","versions":[{"lessThanOrEqual":"2.7.6.6","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBR50","vendor":"NETGEAR","versions":[{"lessThanOrEqual":"2.7.6.6","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBS10","vendor":"NETGEAR","versions":[{"lessThanOrEqual":"2.7.6.6","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBS20","vendor":"NETGEAR","versions":[{"lessThanOrEqual":"2.7.6.6","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBS350","vendor":"NETGEAR","versions":[{"lessThan":"V4.4.2.1","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBS40","vendor":"NETGEAR","versions":[{"lessThanOrEqual":"2.7.6.6","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBS50","vendor":"NETGEAR","versions":[{"lessThanOrEqual":"2.7.6.6","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"XR450","vendor":"NETGEAR","versions":[{"lessThan":"V2.3.3.136","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"XR500","vendor":"NETGEAR","versions":[{"lessThan":"v2.3.3.136","status":"affected","version":"0","versionType":"custom"}]}],"credits":[{"lang":"en","type":"finder","value":"ZeroZenx Labs"}],"datePublic":"2026-06-09T00:00:00.000Z","descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>Insufficient authentication and input validation in the&nbsp;listed NETGEAR models allow users connected to the local network to execute commands impacting product's confidentiality or change certain configurations.&nbsp;</p>"}],"value":"Insufficient authentication and input validation in the listed NETGEAR models allow users connected to the local network to execute commands impacting product's confidentiality or change certain configurations."}],"impacts":[{"capecId":"CAPEC-242","descriptions":[{"lang":"en","value":"CAPEC-242 Code Injection"}]}],"metrics":[{"cvssV4_0":{"Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","Safety":"NOT_DEFINED","attackComplexity":"LOW","attackRequirements":"NONE","attackVector":"ADJACENT","baseScore":5.6,"baseSeverity":"MEDIUM","exploitMaturity":"UNREPORTED","privilegesRequired":"LOW","providerUrgency":"NOT_DEFINED","subAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"NONE","userInteraction":"NONE","valueDensity":"NOT_DEFINED","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U","version":"4.0","vulnAvailabilityImpact":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnerabilityResponseEffort":"NOT_DEFINED"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-306","description":"CWE-306 Missing authentication for critical function","lang":"en","type":"CWE"}]},{"descriptions":[{"cweId":"CWE-20","description":"CWE-20 Improper input validation","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-06-10T15:09:11.714Z","orgId":"a2826606-91e7-4eb6-899e-8484bd4575d5","shortName":"NETGEAR"},"references":[{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/lbr20/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/lbr1020/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/r6700ax/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/r9000/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/r7800/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rax10/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rax120/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rax78/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rax120v2/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rax70/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rbr10/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rbr350/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rbr40/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rbr50/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rbs10/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rbs20/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rax36s/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rbr20/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rbs50/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rbs350/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/xr500/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/rbs40/"},{"tags":["product","patch"],"url":"https://www.netgear.com/support/product/xr450/"},{"tags":["vendor-advisory"],"url":"https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory"}],"solutions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>Devices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:</p><table><thead><tr><th>Product</th><th>Fixed Version</th></tr></thead><tbody><tr><td><b>LBR1020 (EoS)</b> Orbi 4GX AC1200 Dual-Band Mesh WiFi Router</td><td><a href=\"https://www.netgear.com/support/product/lbr1020/\">V2.6.4.60</a></td></tr><tr><td><b>LBR20</b> Orbi LTE Tri-band WiFi Router</td><td><a href=\"https://www.netgear.com/support/product/lbr20/\">V2.7.6.8</a></td></tr><tr><td><b>R6700AX (EoS)</b> 4-Stream AX1800 WiFi 6 Router</td><td>EOS</td></tr><tr><td><b>R7800 (EoS)</b> Nighthawk X4S AC2600 Smart WiFi Router</td><td><a href=\"https://www.netgear.com/support/product/r7800/\">V1.0.4.96</a></td></tr><tr><td><b>R9000 (EoS)</b> Nighthawk X10 AD7200 Smart WiFi Router</td><td><a href=\"https://www.netgear.com/support/product/r9000/\">V1.0.6.46</a></td></tr><tr><td><b>RAX10</b> 4-Stream AX1800 WiFi 6 Router</td><td><a href=\"https://www.netgear.com/support/product/rax10/\">V1.0.5.50</a></td></tr><tr><td><b>RAX10v2</b></td><td>V1.0.5.50</td></tr><tr><td><b>RAX120 (EoS)</b> Nighthawk AX12 12-Stream WiFi Router</td><td><a href=\"https://www.netgear.com/support/product/rax120/\">V1.2.10.56</a></td></tr><tr><td><b>RAX120v1 (EoS)</b></td><td>V1.2.10.56</td></tr><tr><td><b>RAX120v2</b> Nighthawk AX12 12-Stream AX6000 WiFi Router</td><td><a href=\"https://www.netgear.com/support/product/rax120v2/\">V1.2.10.56</a></td></tr><tr><td><b>RAX36S</b> Nighthawk AX4 4-Stream AX3000 WiFi Router</td><td><a href=\"https://www.netgear.com/support/product/rax36s/\">V1.0.5.50</a></td></tr><tr><td><b>RAX70</b> Nighthawk Tri-band AX8 8-Stream AX6600 WiFi 6 Router</td><td><a href=\"https://www.netgear.com/support/product/rax70/\">V1.0.19.172</a></td></tr><tr><td><b>RAX78</b> Nighthawk AX8 8-Stream AX6200 Tri-Band WiFi Router</td><td><a href=\"https://www.netgear.com/support/product/rax78/\">V1.0.19.172</a></td></tr><tr><td><b>RBR10 (EoS)</b> Orbi AC1200 Dual-Band Mesh WiFi Router</td><td>EOS</td></tr><tr><td><b>RBR20 (EoS)</b> Orbi AC2200 Tri-band WiFi Router</td><td>EOS</td></tr><tr><td><b>RBR350</b> Orbi AX1800 WiFi 6 Dual-band Mesh Router</td><td><a href=\"https://www.netgear.com/support/product/rbr350/\">V4.4.2.1</a></td></tr><tr><td><b>RBR40 (EoS)</b> Orbi AC2200 Tri-band WiFi Router</td><td>EOS</td></tr><tr><td><b>RBR50 (EoS)</b> Orbi AC3000 Tri-band WiFi Router</td><td>EOS</td></tr><tr><td><b>RBS10 (EoS)</b> Orbi AC1200 Dual-Band Mesh WiFi Add-on Satellite</td><td>EOS</td></tr><tr><td><b>RBS20 (EoS)</b> Orbi AC2200 Tri-band WiFi Add-on Satellite</td><td>EOS</td></tr><tr><td><b>RBS350</b> Orbi AX1800 WiFi 6 Dual-band Mesh Add-on Satellite</td><td><a href=\"https://www.netgear.com/support/product/rbs350/\">V4.4.2.1</a></td></tr><tr><td><b>RBS40 (EoS)</b> Orbi AC2200 Tri-band WiFi Add-on Satellite</td><td>EOS</td></tr><tr><td><b>RBS50 (EoS)</b> Orbi AC3000 Tri-band WiFi Add-on Satellite</td><td>EOS</td></tr><tr><td><b>XR450 (EoS)</b> Nighthawk Pro Gaming Router</td><td><a href=\"https://www.netgear.com/support/product/xr450/\">V2.3.3.136</a></td></tr><tr><td><b>XR500 (EoS)</b> Nighthawk Pro Gaming Router</td><td><a href=\"https://www.netgear.com/support/product/xr500/\">v2.3.3.136</a></td></tr></tbody></table><p>Models marked (EoS) have reached End-of-Support phase, and no security updates are planned. NETGEAR strongly recommends that you retire these devices and upgrade to a newer NETGEAR device for continued security support.</p>"}],"value":"Devices with automatic updates enabled may already have this patch applied. If not, please check the firmware version and update it to the latest. Fixed in:\n\nProductFixed VersionLBR1020 (EoS) Orbi 4GX AC1200 Dual-Band Mesh WiFi Router V2.6.4.60 https://www.netgear.com/support/product/lbr1020/ LBR20 Orbi LTE Tri-band WiFi Router V2.7.6.8 https://www.netgear.com/support/product/lbr20/ R6700AX (EoS) 4-Stream AX1800 WiFi 6 RouterEOSR7800 (EoS) Nighthawk X4S AC2600 Smart WiFi Router V1.0.4.96 https://www.netgear.com/support/product/r7800/ R9000 (EoS) Nighthawk X10 AD7200 Smart WiFi Router V1.0.6.46 https://www.netgear.com/support/product/r9000/ RAX10 4-Stream AX1800 WiFi 6 Router V1.0.5.50 https://www.netgear.com/support/product/rax10/ RAX10v2V1.0.5.50RAX120 (EoS) Nighthawk AX12 12-Stream WiFi Router V1.2.10.56 https://www.netgear.com/support/product/rax120/ RAX120v1 (EoS)V1.2.10.56RAX120v2 Nighthawk AX12 12-Stream AX6000 WiFi Router V1.2.10.56 https://www.netgear.com/support/product/rax120v2/ RAX36S Nighthawk AX4 4-Stream AX3000 WiFi Router V1.0.5.50 https://www.netgear.com/support/product/rax36s/ RAX70 Nighthawk Tri-band AX8 8-Stream AX6600 WiFi 6 Router V1.0.19.172 https://www.netgear.com/support/product/rax70/ RAX78 Nighthawk AX8 8-Stream AX6200 Tri-Band WiFi Router V1.0.19.172 https://www.netgear.com/support/product/rax78/ RBR10 (EoS) Orbi AC1200 Dual-Band Mesh WiFi RouterEOSRBR20 (EoS) Orbi AC2200 Tri-band WiFi RouterEOSRBR350 Orbi AX1800 WiFi 6 Dual-band Mesh Router V4.4.2.1 https://www.netgear.com/support/product/rbr350/ RBR40 (EoS) Orbi AC2200 Tri-band WiFi RouterEOSRBR50 (EoS) Orbi AC3000 Tri-band WiFi RouterEOSRBS10 (EoS) Orbi AC1200 Dual-Band Mesh WiFi Add-on SatelliteEOSRBS20 (EoS) Orbi AC2200 Tri-band WiFi Add-on SatelliteEOSRBS350 Orbi AX1800 WiFi 6 Dual-band Mesh Add-on Satellite V4.4.2.1 https://www.netgear.com/support/product/rbs350/ RBS40 (EoS) Orbi AC2200 Tri-band WiFi Add-on SatelliteEOSRBS50 (EoS) Orbi AC3000 Tri-band WiFi Add-on SatelliteEOSXR450 (EoS) Nighthawk Pro Gaming Router V2.3.3.136 https://www.netgear.com/support/product/xr450/ XR500 (EoS) Nighthawk Pro Gaming Router v2.3.3.136 https://www.netgear.com/support/product/xr500/ \n\nModels marked (EoS) have reached End-of-Support phase, and no security updates are planned. NETGEAR strongly recommends that you retire these devices and upgrade to a newer NETGEAR device for continued security support."}],"source":{"discovery":"EXTERNAL"},"title":"Insufficient authentication and input validation in certain NETGEAR products","x_generator":{"engine":"Vulnogram 1.0.3"}}},"cveMetadata":{"assignerOrgId":"a2826606-91e7-4eb6-899e-8484bd4575d5","assignerShortName":"NETGEAR","cveId":"CVE-2026-9212","datePublished":"2026-06-09T15:50:53.044Z","dateReserved":"2026-05-21T17:29:04.787Z","dateUpdated":"2026-06-10T15:09:11.714Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-06-09 17:17:51","lastModifiedDate":"2026-06-10 16:17:18","problem_types":["CWE-20","CWE-306","CWE-306 CWE-306 Missing authentication for critical function","CWE-20 CWE-20 Improper input validation"],"metrics":{"cvssMetricV40":[{"source":"a2826606-91e7-4eb6-899e-8484bd4575d5","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"ADJACENT","attackComplexity":"LOW","attackRequirements":"NONE","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subConfidentialityImpact":"HIGH","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","exploitMaturity":"UNREPORTED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}]},"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"9212","Ordinal":"1","Title":"Insufficient authentication and input validation in certain NETG","CVE":"CVE-2026-9212","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"9212","Ordinal":"1","NoteData":"Insufficient authentication and input validation in the listed NETGEAR models allow users connected to the local network to execute commands impacting product's confidentiality or change certain configurations.","Type":"Description","Title":"Insufficient authentication and input validation in certain NETG"}]}}}