What is the CVSS score of CVE-2026-0404?

CVE-2026-0404 has a CVSS 3.1 base score of 8.0 (High). CVSS vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Rbr750 Firmware are affected by CVE-2026-0404?

CVE-2026-0404 presents notable security risk, a input validation vulnerability rated CVSS 8.0.. A patch is available.

Rbr750 Firmware CVE-2026-0404

HIGH

Improper Input Validation (CWE-20)

2026-01-13 a2826606-91e7-4eb6-899e-8484bd4575d5

Command Injection Netgear Rbr750 Firmware Rbr840 Firmware Rbr850 Firmware Rbr860 Firmware Rbre950 Firmware Rbre960 Firmware Rbs750 Firmware Rbs840 Firmware Rbs850 Firmware Rbs860 Firmware Rbse950 Firmware Rbse960 Firmware

8.0

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

Patch released

Feb 12, 2026 - 17:36 nvd

Patch available

CVE Published

Jan 13, 2026 - 16:16 nvd

HIGH 8.0

DescriptionNVD

An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default.

AnalysisAI

Authenticated attackers on the same network can execute arbitrary OS commands on NETGEAR Orbi routers (RBS860, RBR850, RBSE950) through improper validation of DHCPv6 input. The vulnerability requires local or WiFi network access but no user interaction, giving attackers full system compromise capabilities on affected devices. …

RemediationAI

Within 7 days: Identify all affected systems and apply vendor patches promptly. Vendor patch is available.

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-0404 vulnerability details – vuln.today

Back

Rbr750 Firmware CVE-2026-0404

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code