CVE-2026-0407

Low

Low Medium High Critical

CVSS Score

Published: Jan 13, 2026

Last Modified: Jan 14, 2026

Vulnerability Description

An insufficient authentication vulnerability in NETGEAR WiFi range
extenders allows a network adjacent attacker with WiFi authentication or
a physical Ethernet port connection to bypass the authentication
process and access the admin panel.

References & Resources

https://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory
a2826606-91e7-4eb6-899e-8484bd4575d5
https://www.netgear.com/support/product/ex2800
a2826606-91e7-4eb6-899e-8484bd4575d5
https://www.netgear.com/support/product/ex3110
a2826606-91e7-4eb6-899e-8484bd4575d5
https://www.netgear.com/support/product/ex5000
a2826606-91e7-4eb6-899e-8484bd4575d5
https://www.netgear.com/support/product/ex6110
a2826606-91e7-4eb6-899e-8484bd4575d5

Severity Details

out of 10.0

Low

Key Information

Published Date: January 13, 2026

External Resources

NIST NVD

National Vulnerability Database

CVE Details

Detailed vulnerability info

MITRE CVE

Official CVE record

CVE Vulnerabilities