CVE-2026-0416
MediumCVSS 4.5Exploitation Probability (EPSS)
Low risk8th percentile - higher than 8% of all known CVEs
Summary
An insufficient input validation vulnerability in certain NETGEAR router models allows an authenticated administrator with local network access to submit crafted input that bypasses intended management interface restrictions. This can result in unauthorized modification of protected router software or functionality.
Risk Assessment
The organization may be exposed to unauthorized changes in router configuration, potentially leading to loss of control over the network and security threats.
Recommendation
It is recommended to update NETGEAR routers to the latest firmware version to patch this vulnerability and to review and restrict access to the management interface only to trusted administrators.
Original NVD description (English source)
An insufficient input validation vulnerability in certain NETGEAR router models as listed allows an authenticated administrator with local network access to submit crafted input that bypasses intended management interface restrictions, resulting in unauthorized modification of protected router software or functionality.

