Lucene search
+L

114 matches found

NVD
NVD
added 2026/01/13 4:16 p.m.14 views

CVE-2026-0404

An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default...

8CVSS0.01064EPSS
Exploits0References13
NVD
NVD
added 2026/01/13 4:16 p.m.9 views

CVE-2026-0403

An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections...

8CVSS0.00291EPSS
Exploits0References11
Cvelist
Cvelist
added 2026/01/13 4:1 p.m.30 views

CVE-2026-0404 Insufficient input validation in NETGEAR Orbi routers

An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default...

7.5CVSS0.01064EPSS
Exploits0References13
Vulnrichment
Vulnrichment
added 2026/01/13 4:1 p.m.5 views

CVE-2026-0404 Insufficient input validation in NETGEAR Orbi routers

An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default...

7.5CVSS6.7AI score0.01064EPSS
Exploits0References13
Vulnrichment
Vulnrichment
added 2026/01/13 4:0 p.m.6 views

CVE-2026-0405 Authentication Bypass in NETGEAR Orbi Devices

An authentication bypass vulnerability in NETGEAR Orbi devices allows users connected to the local network to access the router web interface as an admin...

8.6CVSS6.5AI score0.0033EPSS
Exploits0References26
Cvelist
Cvelist
added 2026/01/13 4:0 p.m.26 views

CVE-2026-0405 Authentication Bypass in NETGEAR Orbi Devices

An authentication bypass vulnerability in NETGEAR Orbi devices allows users connected to the local network to access the router web interface as an admin...

8.6CVSS0.0033EPSS
Exploits0References26
CVE
CVE
added 2026/01/13 4:0 p.m.38 views

CVE-2026-0405

CVE-2026-0405 affects NETGEAR Orbi devices: an authentication bypass allows users on the local network to access the router web interface with admin privileges. Exploitation requires local network access (attack vector: adjacent, low complexity, no user interaction). Impact per metrics is HIGH fo...

8.6CVSS6.5AI score0.0033EPSS
Exploits0References26Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/13 4:0 p.m.2 views

CVE-2026-0403 Insufficient input validation in NETGEAR Orbi routers

An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections...

4.8CVSS6.8AI score0.00291EPSS
Exploits0References11
CVE
CVE
added 2026/01/13 4:0 p.m.28 views

CVE-2026-0403

The CVE-2026-0403 entry concerns NETGEAR Orbi routers with an insufficient input validation vulnerability that enables OS command injections when an attacker is connected to the LAN. Affected component is the router software; the root cause is input validation weakness. Documented impact indicate...

8CVSS6.8AI score0.00291EPSS
Exploits0References11Affected Software1
Cvelist
Cvelist
added 2026/01/13 4:0 p.m.24 views

CVE-2026-0403 Insufficient input validation in NETGEAR Orbi routers

An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections...

4.8CVSS0.00291EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.20 views

PT-2026-2626

CVE-2026-0403 An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections. https://t.co/RZjGc6Wp0E...

4.8CVSS7.2AI score0.00291EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.12 views

PT-2026-2628

Name of the Vulnerable Software and Affected Versions NETGEAR Orbi affected versions not specified Description A flaw exists that allows users on the local network to gain administrative access to the router web interface without proper authentication. This bypass enables unauthorized access to...

8.6CVSS5.9AI score0.0033EPSS
Exploits0References31
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.10 views

PT-2026-2627

An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default...

7.5CVSS7.1AI score0.01064EPSS
Exploits0References15
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.11 views

NETGEAR Orbi 安全漏洞

NETGEAR Orbi is a distributed WiFi system from NETGEAR. A security vulnerability exists in the NETGEAR Orbi that stems from insufficient input validation of the DHCPv6 feature, which could lead to OS command injection...

8CVSS5.8AI score0.01064EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2026/01/09 12:37 p.m.6 views

CVE-2023-49007

In Netgear Orbi RBR750 firmware before V7.2.6.21, there is a stack-based buffer overflow in /usr/sbin/httpd...

9.8CVSS7.5AI score0.08972EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:15 a.m.7 views

CVE-2022-38458

A cleartext transmission vulnerability exists in the Remote Management functionality of Netgear Orbi Router RBR750 4.6.8.5. A specially-crafted man-in-the-middle attack can lead to a disclosure of sensitive information...

6.5CVSS6.6AI score0.00614EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:44 a.m.14 views

CVE-2022-38452

A command execution vulnerability exists in the hidden telnet service functionality of Netgear Orbi Router RBR750 4.6.8.5. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger this vulnerability...

8.8CVSS7.1AI score0.02089EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:43 a.m.13 views

CVE-2022-37337

A command execution vulnerability exists in the access control functionality of Netgear Orbi Router RBR750 4.6.8.5. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

9.1CVSS7AI score0.02828EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-3901

Malware in sbrugna...

7.4CVSS7AI score0.01568EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-3900

Malware in sbrugna...

8.8CVSS8.4AI score0.04136EPSS
Exploits1References4
Rows per page
Query Builder