Certain NETGEAR routers allow unauthenticated users to gain control of the router
CVE-2026-9211

5.2MEDIUM

Key Information:

Vendor: Netgear
Status: Cax30; Rax30; Rax5; Raxe300
Vendor: CVE Published:; 9 June 2026

What is CVE-2026-9211?

An unauthenticated user on the local network can gain control of the router and make unauthorized changes to its operation.

Affected Version(s)

CAX30 0

RAX30 0

RAX5 0

References

https://www.netgear.com/support/product/cax30/

productpatch

https://www.netgear.com/support/product/rax30/

productpatch

https://www.netgear.com/support/product/rax5/

productpatch

CVSS V4

Score:

5.2

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 9, 2026
Vulnerability Reserved
May 21, 2026

Credit

kaoken

CVE-2026-9211 Data

JSON

Netgear

What is CVE-2026-9211?

Affected Version(s)

References

CVSS V4

Timeline

Credit