Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

882 matches found

RedhatCVE
RedhatCVEadded 2025/06/10 9:19 p.m.3 views

CVE-2025-32459

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the synctime argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7.7...

7.7CVSS7.8AI score0.00614EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/06/10 9:19 p.m.2 views

CVE-2025-32457

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the getfilefromqtn argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7....

7.7CVSS7.8AI score0.00626EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/06/10 9:19 p.m.3 views

CVE-2025-32458

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the getsyslogfromqtn argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS...

7.7CVSS7.8AI score0.00626EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/06/10 9:19 p.m.2 views

CVE-2025-32456

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the putfiletoqtn argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7.7...

7.7CVSS7.8AI score0.00619EPSS
Exploits0References1
NVD
NVDadded 2025/06/08 9:15 p.m.6 views

CVE-2025-3461

The Quantenna Wi-Fi chips ship with an unauthenticated telnet interface by default. This is an instance of CWE-306, "Missing Authentication for Critical Function," and is estimated as a CVSS 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N. This issue affects Quantenna Wi-Fi chipset through versi...

9.8CVSS0.00503EPSS
Exploits1References2
NVD
NVDadded 2025/06/08 9:15 p.m.10 views

CVE-2025-3460

The Quantenna Wi-Fi chipset ships with a local control script, settxpow, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS...

7.8CVSS0.0097EPSS
Exploits1References2
NVD
NVDadded 2025/06/08 9:15 p.m.7 views

CVE-2025-3459

The Quantenna Wi-Fi chipset ships with a local control script, transmitfile, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7.7...

7.8CVSS0.00614EPSS
Exploits0References2
NVD
NVDadded 2025/06/08 9:15 p.m.8 views

CVE-2025-32456

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the putfiletoqtn argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS...

7.8CVSS0.00619EPSS
Exploits0References2
NVD
NVDadded 2025/06/08 9:15 p.m.18 views

CVE-2025-32457

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the getfilefromqtn argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS...

7.8CVSS0.00626EPSS
Exploits0References2
NVD
NVDadded 2025/06/08 9:15 p.m.13 views

CVE-2025-32458

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the getsyslogfromqtn argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS...

7.8CVSS0.00626EPSS
Exploits0References2
NVD
NVDadded 2025/06/08 9:15 p.m.7 views

CVE-2025-32459

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the synctime argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7.7...

7.8CVSS0.00614EPSS
Exploits0References2
NVD
NVDadded 2025/06/08 9:15 p.m.8 views

CVE-2025-32455

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the runcmd argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7.7...

7.8CVSS0.00614EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/06/08 9:4 p.m.10 views

CVE-2025-32459 ON Semiconductor Quantenna router_command.sh (in the sync_time argument) Argument Injection

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the synctime argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7.7...

7.7CVSS0.00614EPSS
Exploits0References2
CVE
CVEadded 2025/06/08 9:4 p.m.51 views

CVE-2025-32458

The CVE-2025-32458 entry affects Quantenna Wi‑Fi chipset firmware (through version 8.0.0.28 of the latest SDK). The local control script router_command.sh (in the get_syslog_from_qtn argument) is vulnerable to command injection (CWE-88). The issue is described as LOCAL, with LOW privileges, NONE ...

7.8CVSS7.9AI score0.00626EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2025/06/08 9:4 p.m.14 views

CVE-2025-32458 ON Semiconductor Quantenna router_command.sh (in the get_syslog_from_qtn argument) Argument Injection

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the getsyslogfromqtn argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS...

7.7CVSS0.00626EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/06/08 9:4 p.m.4 views

CVE-2025-32458 ON Semiconductor Quantenna router_command.sh (in the get_syslog_from_qtn argument) Argument Injection

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the getsyslogfromqtn argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS...

7.7CVSS7.9AI score0.00626EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/06/08 9:3 p.m.2 views

CVE-2025-32457 ON Semiconductor Quantenna router_command.sh (in the get_file_from_qtn argument) Argument Injection

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the getfilefromqtn argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS...

7.7CVSS7.9AI score0.00626EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/06/08 9:3 p.m.9 views

CVE-2025-32457 ON Semiconductor Quantenna router_command.sh (in the get_file_from_qtn argument) Argument Injection

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the getfilefromqtn argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS...

7.7CVSS0.00626EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/06/08 9:3 p.m.2 views

CVE-2025-32456 ON Semiconductor Quantenna router_command.sh (in the put_file_to_qtn argument) Argument Injection

The Quantenna Wi-Fi chipset ships with a local control script, routercommand.sh in the putfiletoqtn argument, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS...

7.7CVSS7.9AI score0.00619EPSS
Exploits0References2
CVE
CVEadded 2025/06/08 9:3 p.m.45 views

CVE-2025-32456

The CVE-2025-32456 entry is supported by connected documents describing a local command-injection vulnerability in Quantenna Wi‑Fi chipsets (through SDK version 8.0.0.28) via router_command.sh (in the put_file_to_qtn argument). This CWE-88 issue is also echoed by related CVEs (CVE-2025-3460 and C...

7.8CVSS7.9AI score0.00619EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder