ID
VAR-202606-2971
CVE
CVE-2026-0420
DESCRIPTION
An improper implementation of TLS certificate validation vulnerability found in NETGEAR's ReadyCloud client app which could allow an attacker to perform attacker-in-the-middle (MiTM) style attacks impacting the product's confidentiality. This vulnerability affects the listed NETGEAR models.
Trust: 1.0
sources:
NVD: CVE-2026-0420
AFFECTED PRODUCTS
| vendor: | netgear | model: | rax120 | scope: | lt | version: | 1.2.9.52 | Trust: 1.0 |
| vendor: | netgear | model: | rax35 | scope: | lt | version: | 1.0.6.106 | Trust: 1.0 |
| vendor: | netgear | model: | rax40 | scope: | lt | version: | 1.0.6.106 | Trust: 1.0 |
| vendor: | netgear | model: | rax38 | scope: | lt | version: | 1.0.6.106 | Trust: 1.0 |
sources:
NVD: CVE-2026-0420
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||
|
|
sources:
NVD: CVE-2026-0420 //
NVD: CVE-2026-0420
PROBLEMTYPE DATA
| problemtype: | CWE-325 | Trust: 1.0 |
sources:
NVD: CVE-2026-0420
EXTERNAL IDS
| db: | NVD | id: | CVE-2026-0420 | Trust: 1.0 |
sources:
NVD: CVE-2026-0420
REFERENCES
| url: | https://www.netgear.com/support/product/rax120v2/ | Trust: 1.0 |
| url: | https://www.netgear.com/support/product/rax38/ | Trust: 1.0 |
| url: | https://www.netgear.com/support/product/rax35/ | Trust: 1.0 |
| url: | https://kb.netgear.com/000070811/june-2026-netgear-security-advisory | Trust: 1.0 |
| url: | https://www.netgear.com/support/product/rax40/ | Trust: 1.0 |
sources:
NVD: CVE-2026-0420
SOURCES
| db: | NVD | id: | CVE-2026-0420 |
LAST UPDATE DATE
2026-06-19T23:34:37.907000+00:00
SOURCES UPDATE DATE
| db: | NVD | id: | CVE-2026-0420 | date: | 2026-06-18T17:08:37.903 |
SOURCES RELEASE DATE
| db: | NVD | id: | CVE-2026-0420 | date: | 2026-06-09T17:17:00.147 |