CVE-2026-0407
Authentication bypass in NETGEAR WiFi Range Extenders via network adjacent attacks
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
An insufficient authentication vulnerability in NETGEAR WiFi range extenders allows a network adjacent attacker with WiFi authentication or a physical Ethernet port connection to bypass the authentication process and access the admin panel.
| CWE | CWE-287 |
| Vendor | netgear |
| Product | ex5000 |
| Published | Jan 13, 2026 |
| Last Updated | Feb 26, 2026 |
Stay Ahead of the Next One
Get instant alerts for netgear ex5000
Be the first to know when new unknown vulnerabilities affecting netgear ex5000 are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
NETGEAR / EX5000
0 < v1.0.1.82
NETGEAR / EX3110
0 < v1.0.1.82
NETGEAR / EX6110
0 < v1.0.1.82
NETGEAR / EX2800
0 < v1.0.1.82
References
netgear.com: https://www.netgear.com/support/product/ex5000 netgear.com: https://www.netgear.com/support/product/ex3110 netgear.com: https://www.netgear.com/support/product/ex6110 netgear.com: https://www.netgear.com/support/product/ex2800 kb.netgear.com: https://kb.netgear.com/000070442/January-2026-NETGEAR-Security-Advisory
Credits
Mad_Max