Description
An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers authenticated over WiFi or on LAN to execute OS command injections on the router. DHCPv6 is not enabled by default.
CVSS breakdown
CVSS 4.0
Attack Vector
Adjacent
Attack Complexity
Low
Attack Requirements
Present
Privileges Required
Low
User Interaction
None
Confidentiality (Vulnerable System)
High
Integrity (Vulnerable System)
High
Availability (Vulnerable System)
High
Confidentiality (Subsequent System)
None
Integrity (Subsequent System)
None
Availability (Subsequent System)
None
E
Unchanged
AU
None
R
Unchanged
V
D
RE
M
U
Amber
Affected products
- NETGEAR / RBR7500 – v7.2.8.5
- NETGEAR / RBR8400 – v7.2.8.5
- NETGEAR / RBR8500 – v7.2.8.5
- NETGEAR / RBR8600 – v7.2.8.5
- NETGEAR / RBRE9500 – v7.2.8.5
- NETGEAR / RBRE9600 – v7.2.8.5
- NETGEAR / RBS7500 – v7.2.8.5
- NETGEAR / RBS8400 – v7.2.8.5
- NETGEAR / RBS8500 – v7.2.8.5
- NETGEAR / RBS8600 – v7.2.8.5
- NETGEAR / RBSE9500 – v7.2.8.5
- NETGEAR / RBSE9600 – v7.2.8.5
References
- MISChttps://www.netgear.com/support/product/rbre960
- MISChttps://www.netgear.com/support/product/rbse960
- MISChttps://www.netgear.com/support/product/rbr850
- MISChttps://www.netgear.com/support/product/rbs850
- MISChttps://www.netgear.com/support/product/rbr860
- MISChttps://www.netgear.com/support/product/rbs860
- MISChttps://www.netgear.com/support/product/rbre950
- MISChttps://www.netgear.com/support/product/rbse950
- MISChttps://www.netgear.com/support/product/rbr750
- MISChttps://www.netgear.com/support/product/rbs750
- MISChttps://www.netgear.com/support/product/rbr840
- MISChttps://www.netgear.com/support/product/rbs840
- MISChttps://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory