CVE-2022-40619

moderate-risk

Published 2026-01-28

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, exposes an HTTP server over the LAN interface of affected devices. This interface is vulnerable to unauthenticated arbitrary command injection through the funjsq_access_token parameter. This affects R6230 before 1.1.0.112, R6260 before 1.1.0.88, R7000 before 1.0.11.134, R8900 before 1.0.5.42, R9000 before 1.0.5.42, and XR300 before 1.0.3.72 and Orbi RBR20 before 2.7.2.26, RBR50 before 2.7.4.26, RBS20 before 2.7.2.26, and RBS50 before 2.7.4.26.

Do I need to act?

1.1% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.7/10 High

NETWORK / HIGH complexity

Affected Products (10)

Rbr20 Firmware

R6230 Firmware

R6260 Firmware

R7000 Firmware

R8900 Firmware

R9000 Firmware

Rax120 Firmware

Rax120V2 Firmware

Xr300 Firmware

Rbs20 Firmware

Affected Vendors

Netgear

References (2)

Vendor Advisory https://kb.netgear.com/000065132/Security-Advisory-for-Vulnerabilities-in-FunJSQ...

Exploit https://www.onekey.com/resource/security-advisory-netgear-routers-funjsq-vulnera...

/ 100

moderate-risk

Severity 23/34 · High

Exploitability 3/34 · Minimal

Exposure 16/34 · Moderate