CVE-2026-9213 - Vulnerability Details - OpenCVE

A vulnerability in the affected NETGEAR gaming routers allows attackers with the ability to intercept and tamper traffic between the router and the Internet, to execute code on the device.

Attack Vector Network

Attack Complexity High

Privileges Required None

Attack Requirements Present

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products

References

Link	Providers
https://www.netgear.com/support/product/mr70/
https://www.netgear.com/support/product/ms70/
https://www.netgear.com/support/product/raxe500/
https://www.netgear.com/support/product/xr1000/

History

Tue, 09 Jun 2026 16:30:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability in the affected NETGEAR gaming routers allows attackers with the ability to intercept and tamper traffic between the router and the Internet, to execute code on the device.
Title		Insufficient input validation in certain NETGEAR routers
Weaknesses		CWE-20
References		https://www.netgear.com/support/product/mr70/ https://www.netgear.com/support/product/ms70/ https://www.netgear.com/support/product/raxe500/ https://www.netgear.com/support/product/xr1000/
Metrics		cvssV4_0 `{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U'}`

MITRE

Status: PUBLISHED

Assigner: NETGEAR

Published: 2026-06-09T15:50:46.744Z

Updated: 2026-06-09T15:50:46.744Z

Reserved: 2026-05-21T17:29:06.017Z

Link: CVE-2026-9213

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-06-09T17:17:51.733

Modified: 2026-06-09T17:17:51.733

Link: CVE-2026-9213

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-09T17:45:10Z

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-9213", "assignerOrgId": "a2826606-91e7-4eb6-899e-8484bd4575d5", "state": "PUBLISHED", "assignerShortName": "NETGEAR", "dateReserved": "2026-05-21T17:29:06.017Z", "datePublished": "2026-06-09T15:50:46.744Z", "dateUpdated": "2026-06-09T15:50:46.744Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "a2826606-91e7-4eb6-899e-8484bd4575d5", "shortName": "NETGEAR", "dateUpdated": "2026-06-09T15:50:46.744Z"}, "title": "Insufficient input validation in certain NETGEAR routers", "datePublic": "2026-06-09T00:00:00.000Z", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-20", "description": "CWE-20 Insufficient input validation", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-248", "descriptions": [{"lang": "en", "value": "CAPEC-248 Command Injection"}]}], "affected": [{"vendor": "NETGEAR", "product": "MR70", "versions": [{"status": "affected", "version": "0", "lessThan": "V1.0.4.48", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "NETGEAR", "product": "MS70", "versions": [{"status": "affected", "version": "0", "lessThan": "V1.0.4.48", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "NETGEAR", "product": "RAXE500", "versions": [{"status": "affected", "version": "0", "lessThan": "V1.2.14.114", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"vendor": "NETGEAR", "product": "XR1000", "versions": [{"status": "affected", "version": "0", "lessThan": "V1.0.2.86", "versionType": "custom"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "A vulnerability in\u00a0the affected\u00a0NETGEAR gaming routers allows\u00a0attackers with\u00a0the ability to intercept and tamper traffic between\u00a0the router and the Internet, to execute code on the device.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p><span>A vulnerability in</span><span> the affected </span><span>NETGEAR gaming routers allows</span><span> </span><span>attackers with</span><span> </span><span>the ability to intercept and tamper traffic between</span><span> </span><span>the router and the I</span><span>nternet, to execute code on the device.</span></p>"}]}], "references": [{"url": "https://www.netgear.com/support/product/mr70/", "tags": ["product", "patch"]}, {"url": "https://www.netgear.com/support/product/ms70/", "tags": ["product", "patch"]}, {"url": "https://www.netgear.com/support/product/raxe500/", "tags": ["product", "patch"]}, {"url": "https://www.netgear.com/support/product/xr1000/", "tags": ["product", "patch"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "HIGH", "attackRequirements": "PRESENT", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subIntegrityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "UNREPORTED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "version": "4.0", "baseSeverity": "MEDIUM", "baseScore": 6.9, "vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U"}}], "solutions": [{"lang": "en", "value": "If automatic updates are enabled, your device may already\nhave this security update applied. If not, please check the firmware\nversion and install the latest update. Fixed in:\n\nProductFixed VersionMR70 V1.0.4.48 https://www.netgear.com/support/product/mr70/ MS70 V1.0.4.48 https://www.netgear.com/support/product/ms70/ RAXE500 V1.2.14.114 https://www.netgear.com/support/product/raxe500/ XR1000 V1.0.2.86 https://www.netgear.com/support/product/xr1000/", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>If automatic updates are enabled, your device may already\nhave this security update<b> </b>applied. If not, please check the firmware\nversion and install the latest update. Fixed in:</p><table><thead><tr><th>Product</th><th>Fixed Version</th></tr></thead><tbody><tr><td>MR70</td><td><a href=\"https://www.netgear.com/support/product/mr70/\">V1.0.4.48</a></td></tr><tr><td>MS70</td><td><a href=\"https://www.netgear.com/support/product/ms70/\">V1.0.4.48</a></td></tr><tr><td>RAXE500</td><td><a href=\"https://www.netgear.com/support/product/raxe500/\">V1.2.14.114</a></td></tr><tr><td>XR1000</td><td><a href=\"https://www.netgear.com/support/product/xr1000/\">V1.0.2.86</a></td></tr></tbody></table>"}]}], "credits": [{"lang": "en", "value": "fluorescent", "type": "finder"}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "Vulnogram 1.0.3"}}}}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in\u00a0the affected\u00a0NETGEAR gaming routers allows\u00a0attackers with\u00a0the ability to intercept and tamper traffic between\u00a0the router and the Internet, to execute code on the device."}], "id": "CVE-2026-9213", "lastModified": "2026-06-09T17:17:51.733", "metrics": {"cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "HIGH", "attackRequirements": "PRESENT", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 6.9, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "UNREPORTED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "a2826606-91e7-4eb6-899e-8484bd4575d5", "type": "Secondary"}]}, "published": "2026-06-09T17:17:51.733", "references": [{"source": "a2826606-91e7-4eb6-899e-8484bd4575d5", "url": "https://www.netgear.com/support/product/mr70/"}, {"source": "a2826606-91e7-4eb6-899e-8484bd4575d5", "url": "https://www.netgear.com/support/product/ms70/"}, {"source": "a2826606-91e7-4eb6-899e-8484bd4575d5", "url": "https://www.netgear.com/support/product/raxe500/"}, {"source": "a2826606-91e7-4eb6-899e-8484bd4575d5", "url": "https://www.netgear.com/support/product/xr1000/"}], "sourceIdentifier": "a2826606-91e7-4eb6-899e-8484bd4575d5", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "a2826606-91e7-4eb6-899e-8484bd4575d5", "type": "Secondary"}]}