CVE-2026-0403

Опубликовано: 13 янв. 2026

Источник: nvd

EPSS Низкий

Описание

An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections.

Ссылки

https://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory
https://www.netgear.com/support/product/rbe970
https://www.netgear.com/support/product/rbe971
https://www.netgear.com/support/product/rbr750
https://www.netgear.com/support/product/rbr850
https://www.netgear.com/support/product/rbr860
https://www.netgear.com/support/product/rbre960
https://www.netgear.com/support/product/rbs750
https://www.netgear.com/support/product/rbs850
https://www.netgear.com/support/product/rbs860
https://www.netgear.com/support/product/rbse960

EPSS

Процентиль: 21%

0.0007

Низкий

Дефекты

CWE-20

Связанные уязвимости

GHSA-52xc-q9g5-mc6m

github

23 дня назад

An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections.

BDU:2026-00540

CVSS3: 4.3

fstec