CVE-2026-0411 MEDIUM

CVE-2026-0411: A Sensitive Information Disclosure Vulnerability in NETGEAR Orbi Satellites

Vendor Netgear
Product RBE970
Weakness CWE-200 · Info exposure
Published June 9, 2026
Last update June 11, 2026

CVSS base score

4.2/10
Attack vector Adjacent
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H/E:U

What the vulnerability does

01Description

An information disclosure vulnerability in the NETGEAR Orbi satellites (RBR/RBE/RBS Series) could allow a user connected to your network to gain administrator access to the Orbi router. The listed NETGEAR models are affected by this vulnerability. Orbi WiFi Systems without satellite devices are not impacted by this issue.

Key dates

02Disclosure timeline

June 9, 2026 CVE published
June 11, 2026 Record updated