Insufficient Configuration Management in NETGEAR Devices
CVE-2026-0418

4.3MEDIUM

Key Information:

Vendor

Netgear

Status
Vendor
CVE Published:
9 June 2026

What is CVE-2026-0418?

The vulnerability arises from inadequate configuration management in several NETGEAR devices. Authenticated administrators with access to the local network may exploit this weakness to manipulate the system settings, potentially compromising the integrity and security of the devices. This vulnerability highlights the importance of robust configuration controls and consistent firmware updates to safeguard against unauthorized access and manipulation.

Affected Version(s)

CBR750 0

EX6120 0 <= 1.0.0.72

EX6130 0 <= 1.0.0.54

References

CVSS V4

Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

byte_blaster
.