CVE-2026-0403
An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections.
| Software | From | Fixed in |
|---|---|---|
| netgear / rbe971_firmware | - | 9.10.0.2 |
| netgear / rbe970_firmware | - | 9.10.0.2 |
| netgear / rbr750_firmware | - | 7.2.8.5 |
| netgear / rbr850_firmware | - | 7.2.8.5 |
| netgear / rbr860_firmware | - | 7.2.8.5 |
| netgear / rbs750_firmware | - | 7.2.8.5 |
| netgear / rbs850_firmware | - | 7.2.8.5 |
| netgear / rbs860_firmware | - | 7.2.8.5 |
| netgear / rbre960_firmware | - | 7.2.8.5 |
| netgear / rbse960_firmware | - | 7.2.8.5 |
- https://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory
- https://www.netgear.com/support/product/rbe970
- https://www.netgear.com/support/product/rbe971
- https://www.netgear.com/support/product/rbr750
- https://www.netgear.com/support/product/rbr850
- https://www.netgear.com/support/product/rbr860
- https://www.netgear.com/support/product/rbre960
- https://www.netgear.com/support/product/rbs750
- https://www.netgear.com/support/product/rbs850
- https://www.netgear.com/support/product/rbs860
- https://www.netgear.com/support/product/rbse960
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime