Netgear Rbr840 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Netgear Rbr840 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (27)
CVE-2021-29068 — CVSS 9.9 (critical): Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects R6700v3 before 1.0.4.98, R6400v2 before…
CVE-2020-35795 — CVSS 9.8 (critical): Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects AC2100 before 1.2.0.72, AC2400…
CVE-2020-35800 — CVSS 9.4 (critical): Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects AC2100 before 1.2.0.72, AC2400 before…
CVE-2020-35798 — CVSS 9.3 (critical): Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects R6400v2 before 1.0.4.84, R6700v3…
CVE-2020-14430 — CVSS 8.8 (high): Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects RBK752 before 3.2.15.25, RBK753 before…
CVE-2020-14431 — CVSS 8.8 (high): Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects RBK752 before 3.2.15.25, RBK753 before…
CVE-2020-14432 — CVSS 8.8 (high): Certain NETGEAR devices are affected by CSRF. This affects RBK752 before 3.2.15.25, RBK753 before 3.2.15.25, RBK753S before 3.2.15.25…
CVE-2020-14436 — CVSS 8.8 (high): Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753…
CVE-2020-14437 — CVSS 8.8 (high): Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753…
CVE-2020-14438 — CVSS 8.8 (high): Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753…
CVE-2020-14439 — CVSS 8.8 (high): Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753…
CVE-2020-14440 — CVSS 8.8 (high): Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753…
CVE-2020-14441 — CVSS 8.8 (high): Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753…
CVE-2020-14442 — CVSS 8.8 (high): Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects RBK752 before 3.2.15.25, RBK753…
CVE-2020-35796 — CVSS 8.8 (high): Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects CBR40 before 2.5.0.10, D6220 before…
CVE-2020-14426 — CVSS 8.8 (high): Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects RBK752 before 3.2.15.25, RBK753 before…
CVE-2020-14427 — CVSS 8.8 (high): Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects RBK752 before 3.2.15.25, RBK753 before…
CVE-2020-14428 — CVSS 8.8 (high): Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects RBK752 before 3.2.15.25, RBK753 before…
CVE-2020-14429 — CVSS 8.8 (high): Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects MK62 before 1.0.4.92, MK63 before 1.0.4.92…
CVE-2026-0404 — CVSS 8.0 (high): An insufficient input validation vulnerability in NETGEAR Orbi devices' DHCPv6 functionality allows network adjacent attackers…
CVE-2026-0405 — CVSS 7.8 (high): An authentication bypass vulnerability in NETGEAR Orbi devices allows users connected to the local network to access the router web…
CVE-2020-35802 — CVSS 7.5 (high): Certain NETGEAR devices are affected by disclosure of sensitive information. This affects CBR40 before 2.5.0.14, RBW30 before 2.6.1.4…
CVE-2020-14434 — CVSS 6.8 (medium): Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK752 before 3.2.15.25, RBK753 before…
CVE-2020-14433 — CVSS 6.8 (medium): Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK852 before 3.2.15.25, RBK853 before…
CVE-2026-0413 — CVSS 4.5 (medium): A buffer overflow vulnerability due to insufficient input validation in the listed NETGEAR models allows authenticated administrators…
CVE-2026-0415 — CVSS 4.5 (medium): Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network…
CVE-2026-0418 — CVSS 4.5 (medium): Insufficient configuration management in the listed devices allows authenticated administrators connected to the local network to tamper…