CVE Catalog

CVE-2026-0416

MediumCVSS 4.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.19%

8th percentile - higher than 8% of all known CVEs

Summary

An insufficient input validation vulnerability in certain NETGEAR router models allows an authenticated administrator with local network access to submit crafted input that bypasses intended management interface restrictions. This can result in unauthorized modification of protected router software or functionality.

Risk Assessment

The organization may be exposed to unauthorized changes in router configuration, potentially leading to loss of control over the network and security threats.

Recommendation

It is recommended to update NETGEAR routers to the latest firmware version to patch this vulnerability and to review and restrict access to the management interface only to trusted administrators.

Original NVD description (English source)

An insufficient input validation vulnerability in certain NETGEAR router models as listed allows an authenticated administrator with local network access to submit crafted input that bypasses intended management interface restrictions, resulting in unauthorized modification of protected router software or functionality.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS