Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

NETGEAR — Vulnerabilities & Security Advisories 194

Browse all 194 CVE security advisories affecting NETGEAR. AI-powered Chinese analysis, POCs, and references for each vulnerability.

NETGEAR manufactures networking hardware, primarily consumer and small business routers, switches, and wireless access points. The company’s extensive vulnerability record, comprising 177 Common Vulnerabilities and Exposures (CVEs), highlights systemic security weaknesses in its embedded firmware. Historically, the most prevalent flaw classes include remote code execution (RCE), which allows attackers to gain full control over devices, and cross-site scripting (XSS) within web management interfaces. Privilege escalation and buffer overflow vulnerabilities are also common, often stemming from insufficient input validation and hardcoded credentials. These defects have facilitated large-scale botnet recruitment and unauthorized network access. While NETGEAR has implemented security response protocols, the high volume of disclosed issues reflects ongoing challenges in securing resource-constrained IoT devices. The persistent presence of critical flaws underscores the difficulty of maintaining robust security standards across a vast portfolio of consumer networking equipment.

Top products by NETGEAR: ProSAFE Network Management System RAX30 SRX5308 R6700 Multiple Routers EX6200 R7800 JWNR2000v2 R6700v3 RBE970 R7000 R6260 DGND3700 WNDR3700v2 Orbi Router RBR750 EX3700 JR6150 CAX30 WN604 EX6120 EX5000 XR1000 R7450 NETGEAR ProSAFE Network Management System N300 WNR2000v5 RS700 WG302v2 WAX610 DGN2200v4 R7000P
CVE IDTitleCVSSSeverityPublished
CVE-2026-0420 Missing TLS certificate validation in NETGEAR's ReadyCloud client app — RAX120v1CWE-325--2026-06-09
CVE-2026-9212 Insufficient authentication and input validation in certain NETGEAR products — LBR1020CWE-306--2026-06-09
CVE-2026-0411 A Sensitive Information Disclosure Vulnerability in NETGEAR Orbi Satellites — RBE970CWE-200--2026-06-09
CVE-2026-0415 Insufficient input validation vulnerability in certain Orbi routers — RBE970CWE-20--2026-06-09
CVE-2026-0413 Buffer overflow vulnerability in certain NETGEAR Nighthawk routers — RBE370CWE-121--2026-06-09
CVE-2026-0414 Insufficient Input Validation Allows Unauthorized Modification of Router Software in certain NETGEAR Routers — RBE970CWE-94--2026-06-09
CVE-2026-0418 Certain NETGEAR devices allow administrators to tamper with system — CBR750CWE-15--2026-06-09
CVE-2026-0417 Insufficient input validation in certain NETGEAR routers — MR60CWE-20--2026-06-09
CVE-2026-9210 Certain NETGEAR routers allow authenticated administrators to gain unintended control of the router — EX3700CWE-20--2026-06-09
CVE-2026-9211 Certain NETGEAR routers allow unauthenticated users to gain control of the router — CAX30CWE-20--2026-06-09
CVE-2026-0416 Improper input validation in certain NETGEAR routers allows unauthorized modification of protected router functionality — RAXE450CWE-20--2026-06-09
CVE-2026-9213 Insufficient input validation in certain NETGEAR routers — MR70CWE-20--2026-06-09
CVE-2026-3088 Unauthenticated users can disrupt router operation — RBR860CWE-787--2026-06-09
CVE-2026-0419 Insufficient input validation vulnerability in NETGEAR JR6150 — JR6150CWE-20--2026-06-09
CVE-2026-0412 Insufficient input validation vulnerability in NETGEAR JR6150 Web UI — JR6150CWE-20--2026-06-09
CVE-2026-0410 Insufficient input validation in certain NETGEAR routers — R7000CWE-20--2026-06-09
CVE-2026-0409 Netgear Orbi 370 Series Remote Code Execution vulnerability — Orbi 370CWE-119--2026-06-09
CVE-2026-24714 NETGEAR PR2000 安全漏洞 — NETGEAR productsCWE-1242 7.1AIHighAI2026-01-30
CVE-2026-0404 Insufficient input validation in NETGEAR Orbi routers — RBRE960CWE-20 8.0AIHighAI2026-01-13
CVE-2026-0408 Path traversal vulnerability in Netgear WiFi Range Extenders — EX5000CWE-287 5.7AIMediumAI2026-01-13
CVE-2026-0407 Authentication bypass in NETGEAR WiFi Range Extenders via network adjacent attacks — EX5000CWE-287 8.8AIHighAI2026-01-13
CVE-2026-0406 Insufficient input validation in NETGEAR Nighthawk router XR1000v2 — XR1000v2CWE-20 8.8AIHighAI2026-01-13
CVE-2026-0405 Authentication Bypass in NETGEAR Orbi Devices — RBE970CWE-287 6.8AIMediumAI2026-01-13
CVE-2026-0403 Insufficient input validation in NETGEAR Orbi routers — RBR750CWE-20 8.8AIHighAI2026-01-13
CVE-2025-12946 Improper input validation in NETGEAR Nighthawk routers — RS700CWE-20 9.0AICriticalAI2025-12-09
CVE-2025-12945 Improper input validation in NETGEAR Nighthawk router R7000P — R7000PCWE-20 7.2AIHighAI2025-12-09
CVE-2025-12941 Denial of Service Vulnerability in NETGEAR C6220 and C6230 — C6220CWE-306 5.5AIMediumAI2025-12-09
CVE-2025-12944 Improper input validation in NETGEAR DGN2200v4 — DGN2200v4CWE-20 9.8 -2025-11-11
CVE-2025-12943 Improper certificate validation in firmware update logic in NETGEAR RAX30 and RAXE300 — RAX30CWE-295 9.8 -2025-11-11
CVE-2025-12942 Improper input validation in NETGEAR R6260 and R6850 — R6260CWE-20 7.5 -2025-11-11

This page lists every published CVE security advisory associated with NETGEAR. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.