CVE-2026-0420
MediumCVSS 5.9Exploitation Probability (EPSS)
Low risk4th percentile - higher than 4% of all known CVEs
Summary
An improper implementation of TLS certificate validation vulnerability found in NETGEAR's ReadyCloud client app which could allow an attacker to perform attacker-in-the-middle (MiTM) style attacks impacting the product's confidentiality.
Risk Assessment
This vulnerability may lead to the exposure of sensitive user data, posing a serious threat to the organization's security.
Recommendation
It is recommended to update the ReadyCloud app to the latest version to patch this vulnerability and implement additional security measures to protect against MiTM attacks.
Original NVD description (English source)
An improper implementation of TLS certificate validation vulnerability found in NETGEAR's ReadyCloud client app which could allow an attacker to perform attacker-in-the-middle (MiTM) style attacks impacting the product's confidentiality. This vulnerability affects the listed NETGEAR models.

