CVE-2026-0407

An insufficient authentication vulnerability in NETGEAR WiFi range extenders allows a network adjacent attacker with WiFi authentication or a physical Ethernet port connection to bypass the authentication process and access the admin panel...

CVE-2026-0408 Path traversal vulnerability in Netgear WiFi Range Extenders

A path traversal vulnerability in NETGEAR WiFi range extenders allows an attacker with LAN authentication to access the router's IP and review the contents of the dynamically generated webproc file, which records the username and password submitted to the router GUI...

CVE-2026-0407 Authentication bypass in NETGEAR WiFi Range Extenders via network adjacent attacks

An insufficient authentication vulnerability in NETGEAR WiFi range extenders allows a network adjacent attacker with WiFi authentication or a physical Ethernet port connection to bypass the authentication process and access the admin panel...

CVE-2026-0407

CVE-2026-0407 describes an insufficient authentication vulnerability in NETGEAR WiFi range extenders. An adjacent attacker with WiFi authentication or a connected Ethernet port can bypass authentication and access the admin panel. Documented by multiple sources (NVD, Red Hat, CNNVD, CIRCL, EUVD, ...

NETGEAR WiFi range extenders 安全漏洞

NETGEAR WiFi range extenders are a series of WiFi signal extenders from NETGEAR. A security vulnerability exists in NETGEAR WiFi range extenders that stems from insufficient authentication, which could lead to a network-adjacent attacker bypassing authentication and accessing the management panel...