CVE-2026-0411

A Sensitive Information Disclosure Vulnerability in NETGEAR Orbi Satellites

CVSS 4.2 MEDIUMEPSS 0.3%CWE-200

Vexday Risk Score

13Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS 4.2EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado

Ciclo de vida

09 jun 2026Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

An information disclosure vulnerability in the NETGEAR Orbi satellites (RBR/RBE/RBS Series) could allow a user connected to your network to gain administrator access to the Orbi router. The listed NETGEAR models are affected by this vulnerability. Orbi WiFi Systems without satellite devices are not impacted by this issue.

CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H/E:U

Produtos afetados

NETGEAR · RBE970 NETGEAR · RBR350 NETGEAR · RBR760 NETGEAR · RBS350 NETGEAR · RBS760

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory https://www.netgear.com/support/product/rbe970/https://www.netgear.com/support/product/rbr350/https://www.netgear.com/support/product/rbr760/https://www.netgear.com/support/product/rbs350/https://www.netgear.com/support/product/rbs760/