Back to overview

CVE-2026-15757

MEDIUM
6.3
CVSS 4.0
Description
A security flaw was discovered in the NETGEAR DGND3700v1 that could allow someone on the same local WiFi network to send unauthorized commands to the device. This issue was identified through testing in a controlled research environment using a simulated version of the router's software and has not been confirmed on physical production devices.

Metadata

CVE ID
CVE-2026-15757
State
PUBLISHED
Assigner
NETGEAR
Reserved
2026-07-14 16:28 UTC
Published
2026-07-14 17:46 UTC
Last updated
2026-07-14 18:02 UTC
Primary CWE
CWE-20
CWE-20 Improper input validation
Vendor / Product
NETGEAR / DGND3700v1
Sources
cve.org  ·  NVD

Severity & Metrics

6.3 MEDIUM CVSS 4.0
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/V:D/RE:L/U:Amber
Affected products (1)
VendorProductPlatformVersions
NETGEAR DGND3700v1 0 ≤ V1.0.0.17
Weakness (CWE)
CWESourceDescription
CWE-20 cna CWE-20 Improper input validation
CVSS scores (1)
ScoreSeverityVersionSourceVector
6.3 MEDIUM 4.0 cna CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/V:D/RE:L/U:Amber
Back to overview