Vulnerability Details CVE-2026-0404
An insufficient input validation vulnerability in NETGEAR Orbi devices'
DHCPv6 functionality allows network adjacent attackers authenticated
over WiFi or on LAN to execute OS command injections on the router.
DHCPv6 is not enabled by default.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 72.6%
CVSS Severity
CVSS v3 Score 8.0
References
- https://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory
- https://www.netgear.com/support/product/rbr750
- https://www.netgear.com/support/product/rbr840
- https://www.netgear.com/support/product/rbr850
- https://www.netgear.com/support/product/rbr860
- https://www.netgear.com/support/product/rbre950
- https://www.netgear.com/support/product/rbre960
- https://www.netgear.com/support/product/rbs750
- https://www.netgear.com/support/product/rbs840
- https://www.netgear.com/support/product/rbs850
- https://www.netgear.com/support/product/rbs860
- https://www.netgear.com/support/product/rbse950
- https://www.netgear.com/support/product/rbse960
Products affected by CVE-2026-0404
-
cpe:2.3:h:netgear:rbr750:-
-
cpe:2.3:h:netgear:rbr840:-
-
cpe:2.3:h:netgear:rbr850:-
-
cpe:2.3:h:netgear:rbr860:-
-
cpe:2.3:h:netgear:rbre950:-
-
cpe:2.3:h:netgear:rbre960:-
-
cpe:2.3:h:netgear:rbs750:-
-
cpe:2.3:h:netgear:rbs840:-
-
cpe:2.3:h:netgear:rbs850:-
-
cpe:2.3:h:netgear:rbs860:-
-
cpe:2.3:h:netgear:rbse950:-
-
cpe:2.3:h:netgear:rbse960:-
-
cpe:2.3:o:netgear:rbr750_firmware:-
-
cpe:2.3:o:netgear:rbr750_firmware:3.2.10.10
-
cpe:2.3:o:netgear:rbr750_firmware:3.2.15.25
-
cpe:2.3:o:netgear:rbr750_firmware:3.2.16.22
-
cpe:2.3:o:netgear:rbr750_firmware:3.2.16.6
-
cpe:2.3:o:netgear:rbr750_firmware:3.2.17.12
-
cpe:2.3:o:netgear:rbr750_firmware:3.2.18.1
-
cpe:2.3:o:netgear:rbr750_firmware:4.6.11.1
-
cpe:2.3:o:netgear:rbr750_firmware:4.6.14.3
-
cpe:2.3:o:netgear:rbr750_firmware:4.6.3.16
-
cpe:2.3:o:netgear:rbr750_firmware:4.6.3.7
-
cpe:2.3:o:netgear:rbr750_firmware:4.6.5.14
-
cpe:2.3:o:netgear:rbr750_firmware:4.6.8.5
-
cpe:2.3:o:netgear:rbr750_firmware:4.6.9.11
-
cpe:2.3:o:netgear:rbr750_firmware:7.2.6.21
-
cpe:2.3:o:netgear:rbr750_firmware:7.2.6.31
-
cpe:2.3:o:netgear:rbr750_firmware:7.2.7.15
-
cpe:2.3:o:netgear:rbr750_firmware:7.2.8.2
-
cpe:2.3:o:netgear:rbr840_firmware:3.2.10.11
-
cpe:2.3:o:netgear:rbr840_firmware:3.2.11.2
-
cpe:2.3:o:netgear:rbr840_firmware:3.2.15.25
-
cpe:2.3:o:netgear:rbr840_firmware:3.2.16.22
-
cpe:2.3:o:netgear:rbr840_firmware:3.2.16.6
-
cpe:2.3:o:netgear:rbr840_firmware:3.2.17.12
-
cpe:2.3:o:netgear:rbr840_firmware:3.2.18.1
-
cpe:2.3:o:netgear:rbr840_firmware:3.2.7.2
-
cpe:2.3:o:netgear:rbr840_firmware:3.2.8.5
-
cpe:2.3:o:netgear:rbr840_firmware:3.2.9.2
-
cpe:2.3:o:netgear:rbr840_firmware:4.6.14.3
-
cpe:2.3:o:netgear:rbr840_firmware:4.6.14.5
-
cpe:2.3:o:netgear:rbr840_firmware:4.6.7.13
-
cpe:2.3:o:netgear:rbr840_firmware:4.6.8.2
-
cpe:2.3:o:netgear:rbr840_firmware:4.6.8.5
-
cpe:2.3:o:netgear:rbr840_firmware:4.6.9.11
-
cpe:2.3:o:netgear:rbr840_firmware:7.2.8.2
-
cpe:2.3:o:netgear:rbr850_firmware:-
-
cpe:2.3:o:netgear:rbr850_firmware:3.1.5.23
-
cpe:2.3:o:netgear:rbr850_firmware:3.2.10.11
-
cpe:2.3:o:netgear:rbr850_firmware:3.2.11.2
-
cpe:2.3:o:netgear:rbr850_firmware:3.2.15.25
-
cpe:2.3:o:netgear:rbr850_firmware:3.2.16.22
-
cpe:2.3:o:netgear:rbr850_firmware:3.2.16.6
-
cpe:2.3:o:netgear:rbr850_firmware:3.2.17.12
-
cpe:2.3:o:netgear:rbr850_firmware:3.2.18.1
-
cpe:2.3:o:netgear:rbr850_firmware:3.2.7.2
-
cpe:2.3:o:netgear:rbr850_firmware:3.2.8.5
-
cpe:2.3:o:netgear:rbr850_firmware:3.2.9.2
-
cpe:2.3:o:netgear:rbr850_firmware:4.6.14.3
-
cpe:2.3:o:netgear:rbr850_firmware:4.6.3.9
-
cpe:2.3:o:netgear:rbr850_firmware:4.6.7.13
-
cpe:2.3:o:netgear:rbr850_firmware:4.6.8.5
-
cpe:2.3:o:netgear:rbr850_firmware:4.6.9.11
-
cpe:2.3:o:netgear:rbr850_firmware:7.2.6.21
-
cpe:2.3:o:netgear:rbr850_firmware:7.2.6.31
-
cpe:2.3:o:netgear:rbr850_firmware:7.2.7.15
-
cpe:2.3:o:netgear:rbr850_firmware:7.2.8.2
-
cpe:2.3:o:netgear:rbr860_firmware:7.2.3.12
-
cpe:2.3:o:netgear:rbr860_firmware:7.2.4.5
-
cpe:2.3:o:netgear:rbr860_firmware:7.2.4.93
-
cpe:2.3:o:netgear:rbr860_firmware:7.2.6.21
-
cpe:2.3:o:netgear:rbr860_firmware:7.2.6.31
-
cpe:2.3:o:netgear:rbr860_firmware:7.2.7.15
-
cpe:2.3:o:netgear:rbr860_firmware:7.2.8.2
-
cpe:2.3:o:netgear:rbre950_firmware:6.0.3.85
-
cpe:2.3:o:netgear:rbre950_firmware:6.3.7.10
-
cpe:2.3:o:netgear:rbre950_firmware:6.3.7.5
-
cpe:2.3:o:netgear:rbre950_firmware:7.2.8.2
-
cpe:2.3:o:netgear:rbre960_firmware:-
-
cpe:2.3:o:netgear:rbre960_firmware:6.0.3.68
-
cpe:2.3:o:netgear:rbre960_firmware:6.0.3.82
-
cpe:2.3:o:netgear:rbre960_firmware:6.0.3.85
-
cpe:2.3:o:netgear:rbre960_firmware:6.3.7.10
-
cpe:2.3:o:netgear:rbre960_firmware:6.3.7.5
-
cpe:2.3:o:netgear:rbre960_firmware:7.2.6.21
-
cpe:2.3:o:netgear:rbre960_firmware:7.2.6.31
-
cpe:2.3:o:netgear:rbre960_firmware:7.2.7.15
-
cpe:2.3:o:netgear:rbre960_firmware:7.2.8.2
-
cpe:2.3:o:netgear:rbs750_firmware:-
-
cpe:2.3:o:netgear:rbs750_firmware:3.2.10.10
-
cpe:2.3:o:netgear:rbs750_firmware:3.2.15.25
-
cpe:2.3:o:netgear:rbs750_firmware:3.2.16.22
-
cpe:2.3:o:netgear:rbs750_firmware:3.2.16.6
-
cpe:2.3:o:netgear:rbs750_firmware:3.2.17.12
-
cpe:2.3:o:netgear:rbs750_firmware:3.2.18.1
-
cpe:2.3:o:netgear:rbs750_firmware:4.6.11.1
-
cpe:2.3:o:netgear:rbs750_firmware:4.6.14.3
-
cpe:2.3:o:netgear:rbs750_firmware:4.6.3.16
-
cpe:2.3:o:netgear:rbs750_firmware:4.6.3.7
-
cpe:2.3:o:netgear:rbs750_firmware:4.6.5.14
-
cpe:2.3:o:netgear:rbs750_firmware:4.6.8.5
-
cpe:2.3:o:netgear:rbs750_firmware:4.6.9.11
-
cpe:2.3:o:netgear:rbs750_firmware:7.2.6.21
-
cpe:2.3:o:netgear:rbs750_firmware:7.2.6.31
-
cpe:2.3:o:netgear:rbs750_firmware:7.2.7.15
-
cpe:2.3:o:netgear:rbs750_firmware:7.2.8.2
-
cpe:2.3:o:netgear:rbs840_firmware:3.2.10.11
-
cpe:2.3:o:netgear:rbs840_firmware:3.2.11.2
-
cpe:2.3:o:netgear:rbs840_firmware:3.2.15.25
-
cpe:2.3:o:netgear:rbs840_firmware:3.2.16.22
-
cpe:2.3:o:netgear:rbs840_firmware:3.2.16.6
-
cpe:2.3:o:netgear:rbs840_firmware:3.2.17.12
-
cpe:2.3:o:netgear:rbs840_firmware:3.2.18.1
-
cpe:2.3:o:netgear:rbs840_firmware:3.2.7.2
-
cpe:2.3:o:netgear:rbs840_firmware:3.2.8.5
-
cpe:2.3:o:netgear:rbs840_firmware:3.2.9.2
-
cpe:2.3:o:netgear:rbs840_firmware:4.6.14.3
-
cpe:2.3:o:netgear:rbs840_firmware:4.6.14.5
-
cpe:2.3:o:netgear:rbs840_firmware:4.6.7.13
-
cpe:2.3:o:netgear:rbs840_firmware:4.6.8.2
-
cpe:2.3:o:netgear:rbs840_firmware:4.6.8.5
-
cpe:2.3:o:netgear:rbs840_firmware:4.6.9.11
-
cpe:2.3:o:netgear:rbs840_firmware:7.2.8.2
-
cpe:2.3:o:netgear:rbs850_firmware:-
-
cpe:2.3:o:netgear:rbs850_firmware:3.1.5.23
-
cpe:2.3:o:netgear:rbs850_firmware:3.2.10.11
-
cpe:2.3:o:netgear:rbs850_firmware:3.2.11.2
-
cpe:2.3:o:netgear:rbs850_firmware:3.2.15.25
-
cpe:2.3:o:netgear:rbs850_firmware:3.2.16.22
-
cpe:2.3:o:netgear:rbs850_firmware:3.2.16.6
-
cpe:2.3:o:netgear:rbs850_firmware:3.2.17.12
-
cpe:2.3:o:netgear:rbs850_firmware:3.2.18.1
-
cpe:2.3:o:netgear:rbs850_firmware:3.2.7.2
-
cpe:2.3:o:netgear:rbs850_firmware:3.2.8.5
-
cpe:2.3:o:netgear:rbs850_firmware:3.2.9.2
-
cpe:2.3:o:netgear:rbs850_firmware:4.6.14.3
-
cpe:2.3:o:netgear:rbs850_firmware:4.6.3.9
-
cpe:2.3:o:netgear:rbs850_firmware:4.6.7.13
-
cpe:2.3:o:netgear:rbs850_firmware:4.6.8.5
-
cpe:2.3:o:netgear:rbs850_firmware:4.6.9.11
-
cpe:2.3:o:netgear:rbs850_firmware:7.2.6.21
-
cpe:2.3:o:netgear:rbs850_firmware:7.2.6.31
-
cpe:2.3:o:netgear:rbs850_firmware:7.2.7.15
-
cpe:2.3:o:netgear:rbs850_firmware:7.2.8.2
-
cpe:2.3:o:netgear:rbs860_firmware:7.2.3.12
-
cpe:2.3:o:netgear:rbs860_firmware:7.2.4.5
-
cpe:2.3:o:netgear:rbs860_firmware:7.2.4.93
-
cpe:2.3:o:netgear:rbs860_firmware:7.2.6.21
-
cpe:2.3:o:netgear:rbs860_firmware:7.2.6.31
-
cpe:2.3:o:netgear:rbs860_firmware:7.2.7.15
-
cpe:2.3:o:netgear:rbs860_firmware:7.2.8.2
-
cpe:2.3:o:netgear:rbse950_firmware:6.0.3.85
-
cpe:2.3:o:netgear:rbse950_firmware:6.3.7.10
-
cpe:2.3:o:netgear:rbse950_firmware:6.3.7.5
-
cpe:2.3:o:netgear:rbse950_firmware:7.2.8.2
-
cpe:2.3:o:netgear:rbse960_firmware:-
-
cpe:2.3:o:netgear:rbse960_firmware:6.0.3.68
-
cpe:2.3:o:netgear:rbse960_firmware:6.0.3.82
-
cpe:2.3:o:netgear:rbse960_firmware:6.0.3.85
-
cpe:2.3:o:netgear:rbse960_firmware:6.3.7.10
-
cpe:2.3:o:netgear:rbse960_firmware:6.3.7.5
-
cpe:2.3:o:netgear:rbse960_firmware:7.2.6.21
-
cpe:2.3:o:netgear:rbse960_firmware:7.2.6.31
-
cpe:2.3:o:netgear:rbse960_firmware:7.2.7.15
-
cpe:2.3:o:netgear:rbse960_firmware:7.2.8.2