Ex5000 Firmware
CVE-2026-0408
HIGH
Severity by source
AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
3DescriptionCVE.org
A path traversal vulnerability in NETGEAR WiFi range extenders allows an attacker with LAN authentication to access the router's IP and review the contents of the dynamically generated webproc file, which records the username and password submitted to the router GUI.
AnalysisAI
NETGEAR WiFi extenders (Ex5000, Ex6110, Ex2800, Ex3110) with improper path traversal validation allow authenticated LAN users to access the webproc configuration file and extract stored router credentials. An attacker with local network access can leverage this to obtain administrative credentials for further network compromise. A patch is available.
Technical ContextAI
Classified as CWE-287 (Improper Authentication). Affects Ex2800 Firmware. A path traversal vulnerability in NETGEAR WiFi range extenders allows an attacker with LAN authentication to access the router's IP and review the contents of the dynamically generated webproc file, which records the username and password submitted to the router GUI.
RemediationAI
A vendor patch is available — apply it immediately. Validate and sanitize file path inputs. Use allowlists.
More in Ex5000 Firmware
View allExaGrid appliances with firmware before 4.8 P26 have a default password of (1) inflection for the root shell account and
ExaGrid appliances with firmware before 4.8 P26 have a default SSH public key in the authorized_keys file for root, whic
NETGEAR WiFi extenders (Ex3110, Ex6110, Ex5000, Ex2800) contain an authentication bypass vulnerability that allows netwo
Same weakness CWE-287 – Improper Authentication
View allSame technique Path Traversal
View allShare
External POC / Exploit Code
Leaving vuln.today