Details of VAR-202606-2103

ID

VAR-202606-2103

CVE

CVE-2026-0415

DESCRIPTION

Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.

Trust: 1.0

sources: NVD: CVE-2026-0415

AFFECTED PRODUCTS

vendor:	netgear	model:	rbe970	scope:	lt	version:	9.12.4.9	Trust: 1.0
vendor:	netgear	model:	rbs840	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbs750	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbre960	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbs860	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbr860	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbse950	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbse960	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbs850	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbr840	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbre950	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbr850	scope:	lt	version:	7.2.8.5	Trust: 1.0
vendor:	netgear	model:	rbr750	scope:	lt	version:	7.2.8.5	Trust: 1.0

sources: NVD: CVE-2026-0415

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2026-0415
value:	MEDIUM
Trust: 1.0
a2826606-91e7-4eb6-899e-8484bd4575d5:	CVE-2026-0415
value:	MEDIUM
Trust: 1.0

nvd@nist.gov:	CVE-2026-0415
baseSeverity:	MEDIUM
baseScore:	4.5
vectorString:	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
attackVector:	ADJACENT
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	HIGH
availabilityImpact:	NONE
exploitabilityScore:	0.9
impactScore:	3.6
version:	3.1
Trust: 1.0

sources: NVD: CVE-2026-0415 // NVD: CVE-2026-0415

PROBLEMTYPE DATA

problemtype:

CWE-20

Trust: 1.0

sources: NVD: CVE-2026-0415

EXTERNAL IDS

db:

NVD

id:

CVE-2026-0415

Trust: 1.0

sources: NVD: CVE-2026-0415

REFERENCES

url:	https://www.netgear.com/support/product/rbs860/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbse950/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbr860/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbre950/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbs750/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbse960/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbs850/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbr750/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbre960/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbr840/	Trust: 1.0
url:	https://kb.netgear.com/000070811/june-2026-netgear-security-advisory	Trust: 1.0
url:	https://www.netgear.com/support/product/rbr850/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbe970/	Trust: 1.0
url:	https://www.netgear.com/support/product/rbs840/	Trust: 1.0

sources: NVD: CVE-2026-0415

SOURCES

db:

NVD

id:

CVE-2026-0415

LAST UPDATE DATE

2026-06-19T22:52:26.625000+00:00

SOURCES UPDATE DATE

db:

NVD

id:

CVE-2026-0415

date:

2026-06-18T17:56:13.980

SOURCES RELEASE DATE

db:

NVD

id:

CVE-2026-0415

date:

2026-06-09T17:16:59.130