NETGEAR Router Firmware: Authenticated Admin Input Validation Exploit
CVE-2026-9210 Published on June 9, 2026
Certain NETGEAR routers allow authenticated administrators to gain unintended control of the router
Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.
Weakness Type
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Affected Versions
NETGEAR EX3700:- Before V1.0.0.100 is affected.
- Before V1.0.0.100 is affected.
- Before V1.0.0.72 is affected.
- Before V1.0.0.54 is affected.
- Before V1.1.7.132 is affected.
- Before V1.0.3.28 is affected.
- Before V1.1.7.14 is affected.
- Before V1.1.7.132 is affected.
- Before V1.0.3.28 is affected.
- Before V1.1.7.14 is affected.
- Before V1.0.4.128 is affected.
- Before V1.0.4.128 is affected.
- Before V1.3.3.152 is affected.
- Before V1.0.11.216 is affected.
- Before V1.3.3.152 is affected.
- Before V1.4.4.92 is affected.
- Before V1.4.4.92 is affected.
- Before and including 1.0.2.160 is affected.
- Before V1.0.18.144 is affected.
- Before V1.0.12.118 is affected.
- Before V1.0.12.118 is affected.
- Before V1.0.12.118 is affected.
- Before V1.0.12.118 is affected.
- Before V1.0.12.120 is affected.
- Before V1.0.12.118 is affected.
- Before V1.0.12.118 is affected.
- Before V1.0.12.120 is affected.
- Before V1.0.12.120 is affected.
- Before V1.0.10.86 is affected.
- Before V1.0.10.86 is affected.
- Before V1.0.0.68 is affected.