ByteOS Network

RBS850

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

3Vulnerabilities found

CVE-2026-0404

Assigner-a2826606-91e7-4eb6-899e-8484bd4575d5

View Details

Assigner-a2826606-91e7-4eb6-899e-8484bd4575d5

CVSS Score-4.8||MEDIUM

EPSS-0.75% / 72.62%

7 Day CHG~0.00%

Published-13 Jan, 2026 | 16:01

Updated-12 Feb, 2026 | 17:36

Insufficient input validation in NETGEAR Orbi routers

An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default.

Vendor-NETGEAR, Inc.

CWE ID-CWE-20

Improper Input Validation

CVE-2026-0405

Assigner-a2826606-91e7-4eb6-899e-8484bd4575d5

View Details

Assigner-a2826606-91e7-4eb6-899e-8484bd4575d5

CVSS Score-6.1||MEDIUM

EPSS-0.26% / 48.62%

7 Day CHG+0.05%

Published-13 Jan, 2026 | 16:00

Updated-12 Feb, 2026 | 17:40

Authentication Bypass in NETGEAR Orbi Devices

An authentication bypass vulnerability in NETGEAR Orbi devices allows users connected to the local network to access the router web interface as an admin.

Vendor-NETGEAR, Inc.

CWE ID-CWE-287

Improper Authentication

CVE-2026-0403

Assigner-a2826606-91e7-4eb6-899e-8484bd4575d5

View Details

Assigner-a2826606-91e7-4eb6-899e-8484bd4575d5

CVSS Score-1.1||LOW

EPSS-0.07% / 21.39%

7 Day CHG~0.00%

Published-13 Jan, 2026 | 16:00

Updated-14 Jan, 2026 | 16:26

Insufficient input validation in NETGEAR Orbi routers

An insufficient input validation vulnerability in NETGEAR Orbi routers allows attackers connected to the router's LAN to execute OS command injections.

Vendor-NETGEAR, Inc.

Product-RBRE960 RBS750 RBR750 RBSE960 RBE971 RBS860 RBR850 RBR860 RBE970 RBS850

CWE ID-CWE-20

Improper Input Validation