{"cve":{"cve_id":"CVE-2026-0411","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00278,"epss_percentile":0.19402,"epss_as_of":"2026-06-23","description":"An information disclosure vulnerability in theĀ NETGEARĀ Orbi satellites (RBR/RBE/RBS Series) could allow a user connected to your network to gain administrator access to the Orbi router. The listed NETGEAR models are affected by this vulnerability.\n\n\nOrbi WiFi Systems without satellite devices are not impacted by this issue.","published_at":"2026-06-09T15:50:52.418000Z","last_modified_at":null,"cvss_v3_score":null,"cvss_v3_vector":null,"cvss_v3_severity":null,"cvss_v4_score":4.2,"cvss_v4_vector":"CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H/E:U","cvss_v4_severity":"MEDIUM","ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-200"],"nvd_references":["https://www.netgear.com/support/product/rbr350/","https://www.netgear.com/support/product/rbs760/","https://www.netgear.com/support/product/rbs350/","https://www.netgear.com/support/product/rbr760/","https://www.netgear.com/support/product/rbe970/","https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:28:46.251824Z"},"effective_severity":"MEDIUM","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":null,"metrics":[]},"cvss_v4_decoded":{"version":"4.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"A","value_label":"Adjacent"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"AT","name":"Attack Requirements","value":"P","value_label":"Present"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"VC","name":"Confidentiality (Vulnerable System)","value":"H","value_label":"High"},{"metric":"VI","name":"Integrity (Vulnerable System)","value":"N","value_label":"None"},{"metric":"VA","name":"Availability (Vulnerable System)","value":"N","value_label":"None"},{"metric":"SC","name":"Confidentiality (Subsequent System)","value":"H","value_label":"High"},{"metric":"SI","name":"Integrity (Subsequent System)","value":"H","value_label":"High"},{"metric":"SA","name":"Availability (Subsequent System)","value":"H","value_label":"High"},{"metric":"E","name":"E","value":"U","value_label":"Unchanged"}]},"affected":[{"vendor_slug":"netgear","vendor_name":"NETGEAR","product_slug":"rbe970","product_name":"RBE970","version_start":"0","version_start_inclusive":true,"version_end":"6.3.8.11","version_end_inclusive":false,"cpe23_uri":"cve5:netgear:rbe970:0:6.3.8.11"},{"vendor_slug":"netgear","vendor_name":"NETGEAR","product_slug":"rbr350","product_name":"RBR350","version_start":"0","version_start_inclusive":true,"version_end":"V4.4.2.2","version_end_inclusive":false,"cpe23_uri":"cve5:netgear:rbr350:0:V4.4.2.2"},{"vendor_slug":"netgear","vendor_name":"NETGEAR","product_slug":"rbr760","product_name":"RBR760","version_start":"0","version_start_inclusive":true,"version_end":"V6.3.8.11","version_end_inclusive":false,"cpe23_uri":"cve5:netgear:rbr760:0:V6.3.8.11"},{"vendor_slug":"netgear","vendor_name":"NETGEAR","product_slug":"rbs350","product_name":"RBS350","version_start":"0","version_start_inclusive":true,"version_end":"V4.4.2.2","version_end_inclusive":false,"cpe23_uri":"cve5:netgear:rbs350:0:V4.4.2.2"},{"vendor_slug":"netgear","vendor_name":"NETGEAR","product_slug":"rbs760","product_name":"RBS760","version_start":"0","version_start_inclusive":true,"version_end":"V6.3.8.11","version_end_inclusive":false,"cpe23_uri":"cve5:netgear:rbs760:0:V6.3.8.11"}],"exploit_refs":[],"news":[],"references":[{"url":"https://www.netgear.com/support/product/rbr350/","source_type":"MISC","tags":[]},{"url":"https://www.netgear.com/support/product/rbs760/","source_type":"MISC","tags":[]},{"url":"https://www.netgear.com/support/product/rbs350/","source_type":"MISC","tags":[]},{"url":"https://www.netgear.com/support/product/rbr760/","source_type":"MISC","tags":[]},{"url":"https://www.netgear.com/support/product/rbe970/","source_type":"MISC","tags":[]},{"url":"https://kb.netgear.com/000070811/June-2026-NETGEAR-Security-Advisory","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2026-06-09T15:50:52.418000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:50:21.811688Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:50:21.811688Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:50:21.811688Z","label":"CVSS score revised","source":"cvelistv5"}]}