ГлавнаяУязвимости → CVE-2026-0408
8высокая

CVE-2026-0408

Описание

A path traversal vulnerability in NETGEAR WiFi range extenders allows an attacker with LAN authentication to access the router's IP and review the contents of the dynamically generated webproc file, which records the username and password submitted to the router GUI.

Затрагиваемое ПО
Netgear Ex2800 firmwareNetgear Ex2800Netgear Ex3110 firmwareNetgear Ex3110Netgear Ex5000 firmwareNetgear Ex5000Netgear Ex6110 firmwareNetgear Ex6110
CVSS
Балл8 — высокая
ВекторCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisoryhttps://www.netgear.com/support/product/ex2800https://www.netgear.com/support/product/ex3110https://www.netgear.com/support/product/ex5000https://www.netgear.com/support/product/ex6110