What is the CVSS score of CVE-2026-0405?

CVE-2026-0405 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Cbr750 Firmware are affected by CVE-2026-0405?

Organizations using An authentication bypass vulnerability in NETGEAR Orbi devices face notable risk from CVE-2026-0405, a improper authentication vulnerability rated CVSS 7.8.. A patch is available.

Cbr750 Firmware CVE-2026-0405

HIGH

Improper Authentication (CWE-287)

2026-01-13 a2826606-91e7-4eb6-899e-8484bd4575d5

Authentication Bypass Netgear Cbr750 Firmware Nbr750 Firmware Rbe370 Firmware Rbe371 Firmware Rbe372 Firmware Rbe373 Firmware Rbe374 Firmware Rbe770 Firmware Rbe771 Firmware Rbe772 Firmware Rbe773 Firmware Rbe970 Firmware Rbe971 Firmware Rbr750 Firmware Rbr840 Firmware Rbr850 Firmware Rbr860 Firmware Rbre950 Firmware Rbre960 Firmware Rbs750 Firmware Rbs840 Firmware Rbs850 Firmware Rbs860 Firmware Rbse950 Firmware Rbse960 Firmware

7.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

Patch released

Feb 12, 2026 - 17:40 nvd

Patch available

CVE Published

Jan 13, 2026 - 16:16 nvd

HIGH 7.8

DescriptionNVD

An authentication bypass vulnerability in NETGEAR Orbi devices allows users connected to the local network to access the router web interface as an admin.

AnalysisAI

Unauthenticated administrative access in NETGEAR Orbi routers (CBR750, NBR750, RBE370, RBE371) allows local network attackers to bypass authentication and gain full admin control of the web interface. This high-severity vulnerability (CVSS 7.8) impacts all users on networks connected to affected devices, enabling attackers to modify router settings, potentially compromising network security and connected devices. …

RemediationAI

Within 7 days: Identify all affected systems and apply vendor patches promptly. Audit authentication configurations and rotate any potentially compromised credentials.

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-0405 vulnerability details – vuln.today

Back

Cbr750 Firmware CVE-2026-0405

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code