CVE Catalog

CVE-2026-0420

MediumCVSS 5.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.14%

4th percentile - higher than 4% of all known CVEs

Summary

An improper implementation of TLS certificate validation vulnerability found in NETGEAR's ReadyCloud client app which could allow an attacker to perform attacker-in-the-middle (MiTM) style attacks impacting the product's confidentiality.

Risk Assessment

This vulnerability may lead to the exposure of sensitive user data, posing a serious threat to the organization's security.

Recommendation

It is recommended to update the ReadyCloud app to the latest version to patch this vulnerability and implement additional security measures to protect against MiTM attacks.

Original NVD description (English source)

An improper implementation of TLS certificate validation vulnerability found in NETGEAR's ReadyCloud client app which could allow an attacker to perform attacker-in-the-middle (MiTM) style attacks impacting the product's confidentiality. This vulnerability affects the listed NETGEAR models.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS