QSearchQSearch

CVE-2026-0420

An improper implementation of TLS certificate validation vulnerability found in ReadyCloud client app which can allow an attacker to perf...

Published: 2026-06-09 · Last updated: 2026-06-09

Severity and scoring

CWE
CWE-325

Description

An improper implementation of TLS certificate validation vulnerability found in ReadyCloud client app which can allow an attacker to perform attacker-in-the-middle (MiTM) style attacks impacting product's confidentiality. This vulnerability affects the listed NETGEAR models.

Source: NVD

References

Related CVEs

Same CWE

  • CVE-2026-45446 Issue summary: The implementations of AES-SIV (RFC 5297) and AES-GCM-SIV (RFC 8452) mishandle the authentication of AAD (Additional Authe... (4.8 MEDIUM)
  • CVE-2026-45445 Issue summary: When an application drives an AES-OCB context through the public EVP_Cipher() one-shot interface, the application-supplied... (7.5 HIGH)
  • CVE-2026-42770 Issue summary: When EVP_PKEY_derive_set_peer() is called with a DHX (X9.42) peer key, the peer key is not properly checked for the subgro... (3.7 LOW)
  • CVE-2026-48480 The netty incubator codec.bhttp is a java language binary http parser
  • CVE-2026-4258 All versions of the package sjcl are vulnerable to Improper Verification of Cryptographic Signature due to missing point-on-curve validat... (7.5 HIGH)