The Verdict
This router gets the basics right, but the gaps are significant. Amazon collects network metadata. If any device on your Wi-Fi gets infected — a kid’s tablet, a smart bulb, a guest’s phone — it can reach your work laptop and banking app on the same flat network.
A C grade is not a sign-off. It means there are real, exploitable issues affecting this network every day.
-
A small gap that still touches every device on this network
A small gap, not an urgent one — but it still touches everything on this network: your work laptop, your phone, your security cameras, and any guest device that joins the Wi-Fi.
Show technical detail
Amazon data collection: Amazon collects network metadata. Review privacy settings in the app.
Everything on this network shares the gaps
💻 Work laptop & remote access
🏦 Online banking & passwords
📷 Security cameras & smart locks
👧 Kids' devices & school logins
📱 Every phone & tablet at home
🔊 Smart speakers & streaming
FCC & Ban Risk
48
/100
C
Supply chain · FCC status · CVEs · Patch support
Security Capabilities
38
/100
D
Zero-Trust · VPN · Segmentation · Monitoring
FCC & Ban Risk measures supply-chain exposure, government flags, and CVE history. Security Capabilities measures what the router can actually do to protect your network. How we score →
Device context
Manufacturer
Amazon subsidiary (US) — Eero LLC, San Francisco, CA - Amazon subsidiary
Country of origin
Built in China / Vietnam
US gov status
FCC authorized — Not in scope
Security patches
Automatic
Worth doing now
1
Review Eero app privacy settings
2
No security actions required - automatic updates handle patching
3
We built Rio to score 8/8 on this framework. It’s the only router we track that does — and we’d tell you if another one did
🔒
Security capabilities comparison
Here's how your router compares to Rio across the 8 dimensions we built our framework around. (Yes, we made Rio.)
EERO
your router
Rio Router™
full standard
Zero-Trust Device Admission
Every new device is blocked by default - admin must approve it once, even if it has the right password
Not available
Available
Network Segmentation (VLANs)
Devices on your network are isolated from each other, so a hacked smart TV can't reach your laptop
Partial
Available
Router-Level VPN for All Devices
All traffic - including smart devices that can't run VPN apps - is encrypted before leaving your home
Not available
Available
Domain Allowlisting
Block everything except approved sites; more effective than trying to blacklist billions of harmful URLs
Partial
Available
Granular Password Control
Separate passwords per network zone - changing one doesn't affect others
Partial
Available
Guest Auto-Expiry
Guest devices are automatically removed when they leave; neighbors can't reconnect without re-approval
Not available
Available
Clean Supply Chain
Manufactured outside Chinese legal jurisdiction - not subject to China's National Intelligence Law
Available
Available
Active Threat Monitoring
Real-time detection of suspicious device behavior, unusual traffic patterns, and known attack signatures on your network
Partial
Available
Rio scores 8/8 — we built it to hit every dimension on this framework. Know a router that does? Tell us and we’ll add it.
Get Rio →
See all Eero models: Eero brand overview →
Rio is the only router that scores 8/8. One step up from where you are.
Free US shipping · 30-day money-back · Works with any internet provider
Watch for new threats
If a new vulnerability is found for your Eero Max 7, we'll email you. One email per incident. No spam.
How this was scored · verified March 2026: This rating combines FCC authorization status, manufacturer legal jurisdiction, CVEs from NIST NVD, active patch support status, and CISA advisory mentions. See full methodology →
Reference Data
Sources & evidence
All findings trace to publicly verifiable primary sources - US government databases, official FCC filings, and NIST CVE records. No proprietary or anonymous sources are used.
Full data source documentation: Scoring Methodology & Citations →