NETGEAR ConfigMgmt Flaw Enables Local Admin Tampering
CVE-2026-0418 Published on June 9, 2026

Certain NETGEAR devices allow administrators to tamper with system
Insufficient configuration management in the listed devices allows authenticated administrators connected to the local network to tamper with the system.

Vendor Advisory NVD

Weakness Type

External Control of System or Configuration Setting

One or more system settings or configuration elements can be externally controlled by a user. Allowing external control of system settings can disrupt service or cause an application to behave in unexpected, and potentially malicious ways.

Products Associated with CVE-2026-0418

Want to know whenever a new CVE is published for Netgear products? stack.watch will email you.

Netgear Rbr750

Netgear Rbr840

Netgear Rbr850

Netgear Rbre960

Netgear Rbs750

Netgear Rbs840

Netgear Rbs850

Netgear Rbse960

Affected Versions

NETGEAR CBR750:

Before v4.6.14.4 is affected.

NETGEAR EX6120:

Before and including 1.0.0.72 is affected.

NETGEAR EX6130:

Before and including 1.0.0.54 is affected.

NETGEAR MR60:

Before V1.1.7.128 is affected.

NETGEAR MR70:

Before V1.0.3.28 is affected.

NETGEAR MR80:

Before V1.1.7.6 is affected.

NETGEAR MS60:

Before V1.1.7.128 is affected.

NETGEAR MS70:

Before V1.0.3.28 is affected.

NETGEAR MS80:

Before V1.1.7.6 is affected.

NETGEAR RAX15:

Before and including 1.0.18.144 is affected.

NETGEAR RAX20:

Before and including 1.0.18.144 is affected.

NETGEAR RAX200:

Before and including 1.0.11.148 is affected.

NETGEAR RAX35v2:

Before V1.0.11.112 is affected.

NETGEAR RAX38v2:

Before V1.0.11.112 is affected.

NETGEAR RAX40v2:

Before V1.0.11.112 is affected.

NETGEAR RAX42:

Before V1.0.11.112 is affected.

NETGEAR RAX43:

Before V1.0.11.112 is affected.

NETGEAR RAX45:

Before V1.0.11.112 is affected.

NETGEAR RAX48:

Before V1.0.11.112 is affected.

NETGEAR RAX50:

Before V1.0.11.112 is affected.

NETGEAR RAX50S:

Before V1.0.11.112 is affected.

NETGEAR RAX75:

Before and including 1.0.11.148 is affected.

NETGEAR RAX80:

Before and including 1.0.11.148 is affected.

NETGEAR RAXE450:

Before V1.0.10.86 is affected.

NETGEAR RAXE500:

Before V1.0.10.86 is affected.

NETGEAR RBR750:

Before V4.6.14.3 is affected.

NETGEAR RBR840:

Before V4.6.14.3 is affected.

NETGEAR RBR850:

Before V4.6.14.3 is affected.

NETGEAR RBRE960:

Before V6.3.7.5 is affected.

NETGEAR RBS750:

Before V4.6.14.3 is affected.

NETGEAR RBS840:

Before V4.6.14.3 is affected.

NETGEAR RBS850:

Before V4.6.14.3 is affected.

NETGEAR RBSE960:

Before V6.3.7.5 is affected.

NETGEAR RS700:

Before V1.0.7.66 is affected.

NETGEAR XR1000:

Before v1.0.0.68 is affected.

Exploit Probability

EPSS

0.26%

Percentile

16.78%