CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2025/06/08 9:2 p.m.•55 views

CVE-2025-32455

The CVE-2025-32455 family concerns the Quantenna Wi‑Fi chipset. A local control script vulnerability exists in router_command.sh (run_cmd argument), enabling command injection (CWE-88) with CVSS 3.1: Local, Low/None privileges and High impact on confidentiality and integrity (A: High, I: High, C:...

7.8CVSS7.9AI score0.00614EPSS

Exploits0References2Affected Software1

Cvelist•added 2025/06/08 9:2 p.m.•10 views

CVE-2025-3460 ON Semiconductor Quantenna set_tx_pow Argument Injection

The Quantenna Wi-Fi chipset ships with a local control script, settxpow, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS...

7.7CVSS0.0097EPSS

Vulnrichment•added 2025/06/08 9:2 p.m.•3 views

CVE-2025-3460 ON Semiconductor Quantenna set_tx_pow Argument Injection

7.7CVSS7.9AI score0.0097EPSS

CVE•added 2025/06/08 9:2 p.m.•48 views

CVE-2025-3460

The CVE-2025-3460 issue affects Quantenna Wi‑Fi chipsets via the SDK up to version 8.0.0.28. A local command-injection vulnerability exists in the local control scripts (set_tx_pow; router_command.sh in the sync_time/get_syslog_from_qtn arguments), classified as CWE-88 (Argument Injection). CVSS ...

7.8CVSS7.9AI score0.0097EPSS

Exploits1References2Affected Software1

Cvelist•added 2025/06/08 9:2 p.m.•10 views

CVE-2025-3459 ON Semiconductor Quantenna transmit_file Argument Injection

The Quantenna Wi-Fi chipset ships with a local control script, transmitfile, that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument Injection'," and is estimated as a CVSS 7.7...

7.7CVSS0.00614EPSS

Vulnrichment•added 2025/06/08 9:2 p.m.•2 views

CVE-2025-3459 ON Semiconductor Quantenna transmit_file Argument Injection

7.7CVSS8.1AI score0.00614EPSS

CVE•added 2025/06/08 9:2 p.m.•45 views

CVE-2025-3459

The CVE refers to the Quantenna Wi‑Fi chipset where the local control script transmit_file is vulnerable to command injection (CWE-88). Affected products include Quantenna Wi‑Fi chipset up to version 8.0.0.28 of the latest SDK. The issue is described with CVSS 7.7–7.8 metrics (LOCAL attacker, low...

7.8CVSS7.9AI score0.00614EPSS

Exploits0References2Affected Software1

CNNVD•added 2025/06/08 12:0 a.m.•2 views

Quantenna Communications Quantenna Wi-Fi chipset 安全漏洞

Quantenna Communications Quantenna Wi-Fi chipset is a WiFi chip from Quantenna Communications, USA. A security vulnerability exists in Quantenna Communications Quantenna Wi-Fi chipset version 8.0.0.28 and prior versions, which originates from an unauthenticated telnet interface and could lead to...

9.8CVSS6.7AI score0.00503EPSS

CNNVD•added 2025/06/08 12:0 a.m.•1 views

Quantenna Communications Quantenna Wi-Fi chipset 安全漏洞

Quantenna Communications Quantenna Wi-Fi chipset is a WiFi chip from Quantenna Communications, USA. A security vulnerability exists in Quantenna Communications Quantenna Wi-Fi chipset version 8.0.0.28 and earlier, which originates from a command injection in the synctime parameter of the...

CNNVD•added 2025/06/08 12:0 a.m.•2 views

Quantenna Communications Quantenna Wi-Fi chipset 安全漏洞

Quantenna Communications Quantenna Wi-Fi chipset is a WiFi chip from Quantenna Communications, USA. A security vulnerability exists in Quantenna Communications Quantenna Wi-Fi chipset version 8.0.0.28 and earlier, which originates from a command injection in the getfilefromqtn parameter in the...

CNNVD•added 2025/06/08 12:0 a.m.•1 views

Quantenna Communications Quantenna Wi-Fi chipset 安全漏洞

Quantenna Communications Quantenna Wi-Fi chipset is a WiFi chip from Quantenna Communications, USA. A security vulnerability exists in Quantenna Communications Quantenna Wi-Fi chipset version 8.0.0.28 and earlier, which originates from a command injection in the runcmd parameter of the...

CNNVD•added 2025/06/08 12:0 a.m.•2 views

Quantenna Communications Quantenna Wi-Fi chipset 安全漏洞

Quantenna Communications Quantenna Wi-Fi chipset is a WiFi chip from Quantenna Communications, USA. A security vulnerability exists in Quantenna Communications Quantenna Wi-Fi chipset version 8.0.0.28 and earlier, which originates from a command injection in the getsyslogfromqtn parameter in the...

Positive Technologies•added 2025/06/08 12:0 a.m.•2 views

PT-2025-24375 · Quantenna · Quantenna Wi-Fi Chipset

Name of the Vulnerable Software and Affected Versions: Quantenna Wi-Fi chipset versions through 8.0.0.28 Description: The issue concerns an unauthenticated telnet interface that ships by default with the Quantenna Wi-Fi chips, classified as CWE-306, "Missing Authentication for Critical Function."...

9.4CVSS6.6AI score0.00503EPSS

Exploits1References11

CNNVD•added 2025/06/08 12:0 a.m.•3 views

Quantenna Communications Quantenna Wi-Fi chipset 安全漏洞

Quantenna Communications Quantenna Wi-Fi chipset is a WiFi chip from Quantenna Communications, Inc. A security vulnerability exists in Quantenna Communications Quantenna Wi-Fi chipset version 8.0.0.28 and earlier, which originates from a command injection and could lead to arbitrary command...

7.8CVSS7.4AI score0.00614EPSS

CNNVD•added 2025/06/08 12:0 a.m.•3 views

Quantenna Communications Quantenna Wi-Fi chipset 安全漏洞

The Quantenna Communications Quantenna Wi-Fi chipset is a WiFi chip from Quantenna Communications, Inc. A security vulnerability exists in Quantenna Communications Quantenna Wi-Fi chipset version 8.0.0.28 and earlier, which originates from a command injection and could lead to arbitrary command...

7.8CVSS7.2AI score0.0097EPSS

CNNVD•added 2025/06/08 12:0 a.m.•3 views

Quantenna Communications Quantenna Wi-Fi chipset 安全漏洞

Quantenna Communications Quantenna Wi-Fi chipset is a WiFi chip from Quantenna Communications, USA. A security vulnerability exists in Quantenna Communications Quantenna Wi-Fi chipset version 8.0.0.28 and earlier, which originates from a command injection in the putfiletoqtn parameter in the...

BDU FSTEC•added 2025/06/05 12:0 a.m.•7 views

The vulnerability of embedded software developed by Qualcomm, related to the execution of operations outside the buffer in memory, allows attackers to disclose protected information.

The vulnerability of microprogramming software in embedded Qualcomm chips is related to the execution of operations beyond buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to disclose protected information during RTCP protocol processing...

8.5CVSS7.8AI score0.00202EPSS

CNNVD•added 2025/06/03 12:0 a.m.•2 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a potential information disclosure when receiving invalid RTCP packets during a VoLTE/VoWiFi IMS call...

8.2CVSS6.1AI score0.00264EPSS