{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-0405","assignerOrgId":"a2826606-91e7-4eb6-899e-8484bd4575d5","state":"PUBLISHED","assignerShortName":"NETGEAR","dateReserved":"2025-12-03T04:16:11.511Z","datePublished":"2026-01-13T16:00:48.296Z","dateUpdated":"2026-02-26T15:04:44.730Z"},"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","product":"RBE970","vendor":"NETGEAR","versions":[{"lessThan":"v9.13.2.1","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBE971","vendor":"NETGEAR","versions":[{"lessThan":"v9.13.2.1","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"CBR750","vendor":"NETGEAR","versions":[{"lessThan":"V4.6.14.8","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"NBR750","vendor":"NETGEAR","versions":[{"lessThan":"V4.6.15.14","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBE770","vendor":"NETGEAR","versions":[{"lessThan":"v10.5.20.7","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBE771","vendor":"NETGEAR","versions":[{"lessThan":"v10.5.20.7","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBE772","vendor":"NETGEAR","versions":[{"lessThan":"v10.5.20.7","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBE773","vendor":"NETGEAR","versions":[{"lessThan":"v10.5.20.7","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBR750","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBS750","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBR840","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBS840","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBR850","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBS850","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBR860","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBS860","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBRE950","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBSE950","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBRE960","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBSE960","vendor":"NETGEAR","versions":[{"lessThan":"v7.2.8.2","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBE370","vendor":"NETGEAR","versions":[{"lessThan":"v12.1.3.11","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBE371","vendor":"NETGEAR","versions":[{"lessThan":"v12.1.3.11","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBE372","vendor":"NETGEAR","versions":[{"lessThan":"v12.1.3.11","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBE373","vendor":"NETGEAR","versions":[{"lessThan":"v12.1.3.11","status":"affected","version":"0","versionType":"custom"}]},{"defaultStatus":"unaffected","product":"RBE374","vendor":"NETGEAR","versions":[{"lessThan":"v12.1.3.11","status":"affected","version":"0","versionType":"custom"}]}],"cpeApplicability":[{"nodes":[{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbe970:*:*:*:*:*:*:*:*","versionEndExcluding":"v9.13.2.1","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbe971:*:*:*:*:*:*:*:*","versionEndExcluding":"v9.13.2.1","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:cbr750:*:*:*:*:*:*:*:*","versionEndExcluding":"v4.6.14.8","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:nbr750:*:*:*:*:*:*:*:*","versionEndExcluding":"v4.6.15.14","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbe770:*:*:*:*:*:*:*:*","versionEndExcluding":"v10.5.20.7","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbe771:*:*:*:*:*:*:*:*","versionEndExcluding":"v10.5.20.7","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbe772:*:*:*:*:*:*:*:*","versionEndExcluding":"v10.5.20.7","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbe773:*:*:*:*:*:*:*:*","versionEndExcluding":"v10.5.20.7","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbr750:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbs750:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbr840:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbs840:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbr850:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbs850:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbr860:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbs860:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbre950:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbse950:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbre960:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbse960:*:*:*:*:*:*:*:*","versionEndExcluding":"v7.2.8.2","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbe370:*:*:*:*:*:*:*:*","versionEndExcluding":"v12.1.3.11","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbe371:*:*:*:*:*:*:*:*","versionEndExcluding":"v12.1.3.11","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbe372:*:*:*:*:*:*:*:*","versionEndExcluding":"v12.1.3.11","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbe373:*:*:*:*:*:*:*:*","versionEndExcluding":"v12.1.3.11","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"},{"cpeMatch":[{"criteria":"cpe:2.3:h:netgear:rbe374:*:*:*:*:*:*:*:*","versionEndExcluding":"v12.1.3.11","versionStartIncluding":"0","vulnerable":true}],"negate":false,"operator":"OR"}],"operator":"OR"}],"credits":[{"lang":"en","type":"finder","value":"Fulaige"}],"datePublic":"2026-01-13T16:00:00.000Z","descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<div>An authentication bypass vulnerability in NETGEAR Orbi devices allows \nusers connected to the local network to access the router web interface \nas an admin.</div><p></p>"}],"value":"An authentication bypass vulnerability in NETGEAR Orbi devices allows \nusers connected to the local network to access the router web interface \nas an admin."}],"impacts":[{"capecId":"CAPEC-115","descriptions":[{"lang":"en","value":"CAPEC-115 Authentication Bypass"}]}],"metrics":[{"cvssV4_0":{"Automatable":"NO","Recovery":"USER","Safety":"NOT_DEFINED","attackComplexity":"LOW","attackRequirements":"NONE","attackVector":"ADJACENT","baseScore":6.1,"baseSeverity":"MEDIUM","exploitMaturity":"UNREPORTED","privilegesRequired":"LOW","providerUrgency":"AMBER","subAvailabilityImpact":"NONE","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","userInteraction":"NONE","valueDensity":"DIFFUSE","vectorString":"CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Amber","version":"4.0","vulnAvailabilityImpact":"HIGH","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnerabilityResponseEffort":"MODERATE"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-287","description":"CWE-287 Improper Authentication","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"a2826606-91e7-4eb6-899e-8484bd4575d5","shortName":"NETGEAR","dateUpdated":"2026-01-13T16:21:13.069Z"},"references":[{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbe971"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbe970"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/cbr750"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/nbr750"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbe770"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbe771"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbe772"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbe773"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbr750"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbs750"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbr840"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbs840"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbr850"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbs850"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbr860"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbs860"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbre950"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbse950"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbre960"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbse960"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbe370"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbe371"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbe372"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbe373"},{"tags":["patch","product"],"url":"https://www.netgear.com/support/product/rbe374"},{"tags":["vendor-advisory"],"url":"https://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory"}],"solutions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>Devices with automatic updates enabled may already have this patch \napplied. If not, please check the firmware version and update it to the \nlatest.</p><p>Fixed in:</p><p><span>CBR750 f</span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/cbr750\">irmware V4.6.14.8 or later</a><br><span>NBR750 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/nbr750\">firmware V4.6.15.14 or later</a><br><span>RBE370 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbe370\">firmware v12.1.3.11 or later</a><br><span>RBE371 </span><a href=\"https://www.netgear.com/support/product/rbe371\">firmware v12.1.3.11 or later</a><br><span>RBE372 </span><a href=\"https://www.netgear.com/support/product/rbe372\">firmware v12.1.3.11 or later</a><br><span>RBE373 </span><a href=\"https://www.netgear.com/support/product/rbe373\">firmware v12.1.3.11 or later</a><br><span>RBE374 </span><a href=\"https://www.netgear.com/support/product/rbe374\">firmware v12.1.3.11 or later</a><br><span>RBE770 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbe770\">firmware v10.5.20.7 or later</a><br><span>RBE771 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbe771\">firmware v10.5.20.7 or later</a><br><span>RBE772 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbe772\">firmware v10.5.20.7 or later</a><br><span>RBE773 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbe773\">firmware v10.5.20.7 or later</a><br><span>RBE970&nbsp;</span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbe970\">firmware v9.13.2.1 or later</a><br><span>RBE971 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbe971\">firmware v9.13.2.1 or later</a><br><span>RBR750 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbr750\">firmware v7.2.8.2 or later</a><br><span>RBR840 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbr840\">firmware v7.2.8.2 or later</a><br><span>RBR850 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbr850\">firmware v7.2.8.2 or later</a><br><span>RBR860 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbr860\">firmware v7.2.8.2 or later</a><br><span>RBS750 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbs750\">firmware v7.2.8.2 or later</a><br><span>RBS840 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbs840\">firmware v7.2.8.2 or later</a><br><span>RBS850 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbs850\">firmware v7.2.8.2 or later</a><br><span>RBS860 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbs860\">firmware v7.2.8.2 or later</a><br><span>RBRE950 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbre950\">firmware v7.2.8.2 or later</a><br><span>RBRE960 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbre960\">firmware v7.2.8.2 or later</a><br><span>RBSE950 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbse950\">firmware v7.2.8.2 or later</a><br><span>RBSE960 </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.netgear.com/support/product/rbse960\">firmware v7.2.8.2 or later</a></p><div><br></div>"}],"value":"Devices with automatic updates enabled may already have this patch \napplied. If not, please check the firmware version and update it to the \nlatest.\n\nFixed in:\n\nCBR750 f irmware V4.6.14.8 or later https://www.netgear.com/support/product/cbr750 \nNBR750  firmware V4.6.15.14 or later https://www.netgear.com/support/product/nbr750 \nRBE370  firmware v12.1.3.11 or later https://www.netgear.com/support/product/rbe370 \nRBE371  firmware v12.1.3.11 or later https://www.netgear.com/support/product/rbe371 \nRBE372  firmware v12.1.3.11 or later https://www.netgear.com/support/product/rbe372 \nRBE373  firmware v12.1.3.11 or later https://www.netgear.com/support/product/rbe373 \nRBE374  firmware v12.1.3.11 or later https://www.netgear.com/support/product/rbe374 \nRBE770  firmware v10.5.20.7 or later https://www.netgear.com/support/product/rbe770 \nRBE771  firmware v10.5.20.7 or later https://www.netgear.com/support/product/rbe771 \nRBE772  firmware v10.5.20.7 or later https://www.netgear.com/support/product/rbe772 \nRBE773  firmware v10.5.20.7 or later https://www.netgear.com/support/product/rbe773 \nRBE970  firmware v9.13.2.1 or later https://www.netgear.com/support/product/rbe970 \nRBE971  firmware v9.13.2.1 or later https://www.netgear.com/support/product/rbe971 \nRBR750  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbr750 \nRBR840  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbr840 \nRBR850  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbr850 \nRBR860  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbr860 \nRBS750  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbs750 \nRBS840  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbs840 \nRBS850  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbs850 \nRBS860  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbs860 \nRBRE950  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbre950 \nRBRE960  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbre960 \nRBSE950  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbse950 \nRBSE960  firmware v7.2.8.2 or later https://www.netgear.com/support/product/rbse960"}],"source":{"discovery":"EXTERNAL"},"title":"Authentication Bypass in NETGEAR Orbi Devices","x_generator":{"engine":"Vulnogram 0.5.0"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2026-0405","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"version":"2.0.3","timestamp":"2026-01-14T04:57:26.552144Z"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-02-26T15:04:44.730Z"}}]}}