Netgear: >> Rbs850 Firmware >> 3.2.17.12 Security Vulnerabilities
Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.
CVSS Score
4.3
EPSS Score
0.003
Published
2026-06-09
Insufficient configuration management in the listed devices allows authenticated administrators connected to the local network
to tamper with the system.
CVSS Score
4.3
EPSS Score
0.003
Published
2026-06-09
A buffer overflow vulnerability due to insufficient input validation in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.
CVSS Score
4.3
EPSS Score
0.003
Published
2026-06-09
An insufficient input validation vulnerability in NETGEAR Orbi routers
allows attackers connected to the router's LAN to execute OS command
injections.
CVSS Score
1.1
EPSS Score
0.003
Published
2026-01-13
An insufficient input validation vulnerability in NETGEAR Orbi devices'
DHCPv6 functionality allows network adjacent attackers authenticated
over WiFi or on LAN to execute OS command injections on the router.
DHCPv6 is not enabled by default.
CVSS Score
4.8
EPSS Score
0.011
Published
2026-01-13
An authentication bypass vulnerability in NETGEAR Orbi devices allows
users connected to the local network to access the router web interface
as an admin.
CVSS Score
6.1
EPSS Score
0.003
Published
2026-01-13
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects EX6120 before 1.0.0.66, EX6130 before 1.0.0.46, EX7000 before 1.0.1.106, EX7500 before 1.0.1.76, EX3700 before 1.0.0.94, EX3800 before 1.0.0.94, RBR850 before 4.6.3.9, RBS850 before 4.6.3.9, and RBK852 before 4.6.3.9.
CVSS Score
8.4
EPSS Score
0.006
Published
2021-12-26