CVE-2026-9211
Analyzed Analyzed - Analysis Complete

Remote Code Execution in Router Firmware

Publication date: 2026-06-09

Last updated on: 2026-06-18

Assigner: Netgear, Inc.

Description
An unauthenticated user on the local network can gain control of the router and make unauthorized changes to its operation.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-06-09
Last Modified
2026-06-18
Generated
2026-06-30
AI Q&A
2026-06-09
EPSS Evaluated
2026-06-28
NVD
CVE-2026-9211
EUVD
EUVD-2026-35458

Affected Vendors & Products

Showing 4 associated CPEs
Vendor Product Version / Range
netgear cax30_firmware to 2.2.1.4 (exc)
netgear rax30_firmware to 1.0.10.94 (exc)
netgear rax5_firmware to 1.0.5.34 (exc)
netgear raxe300_firmware to 1.0.10.72 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-20 The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability allows an unauthenticated user on the local network to gain control of the router and make unauthorized changes to its operation.

Impact Analysis

An attacker exploiting this vulnerability can take control of your router without needing to authenticate, potentially altering its settings and operation. This could disrupt your network, expose your devices to further attacks, or allow interception and manipulation of your network traffic.

Compliance Impact

This vulnerability allows an unauthenticated user on the local network to gain control of the router and make unauthorized changes to its operation.

Such unauthorized control and changes could potentially lead to breaches of data security and privacy, which may impact compliance with standards and regulations like GDPR and HIPAA that require protection of sensitive data and secure network operations.

Mitigation Strategies

The CVE description indicates that an unauthenticated user on the local network can gain control of the router and make unauthorized changes. Although no specific mitigation steps are provided for CVE-2026-9211, it is generally recommended to update the router firmware to the latest version provided by the manufacturer.

Since the affected devices are Netgear RAX5 and CAX30, you should visit the official Netgear support pages for these products to check for firmware updates and apply them promptly.

Additionally, restricting local network access to trusted users and devices, and monitoring router management interfaces for unauthorized access attempts, can help mitigate the risk.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-9211. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart