CVE-2026-3088 - Vulnerability Details

Unauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests.

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Netgear	Rbr860 Rbre950 Rbre960 Rbre970 Rbre971 Rbs860 Rbse950 Rbse960

No data.

References

Link	Providers
https://www.netgear.com/support/product/rbr860/
https://www.netgear.com/support/product/rbre950/
https://www.netgear.com/support/product/rbre960/
https://www.netgear.com/support/product/rbs860/
https://www.netgear.com/support/product/rbse950/
https://www.netgear.com/support/product/rbse960/

History

Tue, 09 Jun 2026 20:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Netgear Netgear rbr860 Netgear rbre950 Netgear rbre960 Netgear rbre970 Netgear rbre971 Netgear rbs860 Netgear rbse950 Netgear rbse960
Vendors & Products		Netgear Netgear rbr860 Netgear rbre950 Netgear rbre960 Netgear rbre970 Netgear rbre971 Netgear rbs860 Netgear rbse950 Netgear rbse960

Tue, 09 Jun 2026 19:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Tue, 09 Jun 2026 16:30:00 +0000

Type	Values Removed	Values Added
Description		Unauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests.
Title		Unauthenticated users can disrupt router operation
Weaknesses		CWE-787
References		https://www.netgear.com/support/product/rbr860/ https://www.netgear.com/support/product/rbre950/ https://www.netgear.com/support/product/rbre960/ https://www.netgear.com/support/product/rbs860/ https://www.netgear.com/support/product/rbse950/ https://www.netgear.com/support/product/rbse960/
Metrics		cvssV4_0 `{'score': 4.9, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/V:D/RE:L/U:Amber'}`

MITRE

Status: PUBLISHED

Assigner: NETGEAR

Published: 2026-06-09T15:50:47.289Z

Updated: 2026-06-09T18:39:56.251Z

Reserved: 2026-02-24T00:11:29.678Z

Link: CVE-2026-3088

Vulnrichment

Updated: 2026-06-09T17:34:53.277Z

NVD

Status : Awaiting Analysis

Published: 2026-06-09T17:17:05.800

Modified: 2026-06-09T19:38:32.463

Link: CVE-2026-3088

Redhat

No data.

Metrics

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object