CVE-2026-0407 Authentication bypass in NETGEAR WiFi Range Extenders via network adjacent attacks

🗓️ 13 Jan 2026 16:01:04Reported by NETGEARType

Insufficient authentication lets adjacent attacker bypass authentication and access NETGEAR admin.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2026-0407	13 Jan 202617:04	–	circl
CNNVD	NETGEAR WiFi range extenders 安全漏洞	13 Jan 202600:00	–	cnnvd
CVE	CVE-2026-0407	13 Jan 202616:01	–	cve
EUVD	EUVD-2026-2231	13 Jan 202616:01	–	euvd
NVD	CVE-2026-0407	13 Jan 202616:16	–	nvd
OSV	CVE-2026-0407	13 Jan 202616:16	–	osv
Positive Technologies	PT-2026-2630	13 Jan 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-0407	14 Jan 202616:23	–	redhatcve
Vulnrichment	CVE-2026-0407 Authentication bypass in NETGEAR WiFi Range Extenders via network adjacent attacks	13 Jan 202616:01	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "EX5000",
    "vendor": "NETGEAR",
    "versions": [
      {
        "lessThan": "v1.0.1.82",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "EX3110",
    "vendor": "NETGEAR",
    "versions": [
      {
        "lessThan": "v1.0.1.82",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "EX6110",
    "vendor": "NETGEAR",
    "versions": [
      {
        "lessThan": "v1.0.1.82",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "EX2800",
    "vendor": "NETGEAR",
    "versions": [
      {
        "lessThan": "v1.0.1.82",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
netgear	www.netgear.com/support/product/ex3110
kb	www.kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory
netgear	www.netgear.com/support/product/ex2800
netgear	www.netgear.com/support/product/ex5000
netgear	www.netgear.com/support/product/ex6110

13 Jan 2026 16:21Current

CVSS 48.6

EPSS0.00226

CWE-287