Lucene search
K

98 matches found

Positive Technologies
Positive Technologies
added 2025/03/27 12:0 a.m.3 views

PT-2025-24369 · Quantenna · Quantenna Wi-Fi Chipset

Name of the Vulnerable Software and Affected Versions: Quantenna Wi-Fi chipset versions prior to 8.0.0.28 Description: The Quantenna Wi-Fi chipset contains a local control script, router command.sh, that is vulnerable to command injection. This issue is an instance of improper neutralization of...

7.7CVSS6.7AI score0.0097EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2025/03/27 12:0 a.m.3 views

PT-2025-24372

Name of the Vulnerable Software and Affected Versions Quantenna Wi-Fi chipset versions prior to 8.0.0.28 Description The Quantenna Wi-Fi chipset has a local control script, router command.sh, that is vulnerable to command injection, specifically in the sync time argument. This issue is an instanc...

7.8CVSS5.3AI score0.0097EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2025/03/27 12:0 a.m.3 views

PT-2025-24374

Name of the Vulnerable Software and Affected Versions Quantenna Wi-Fi chipset versions prior to 8.0.0.28 Description The Quantenna Wi-Fi chipset ships with a local control script, set tx pow, that is vulnerable to command injection. This issue is an instance of CWE-88, "Improper Neutralization of...

7.8CVSS5.2AI score0.0097EPSS
Exploits1References15
Positive Technologies
Positive Technologies
added 2025/03/27 12:0 a.m.3 views

PT-2025-24370 · Quantenna · Quantenna Wi-Fi Chipset

Name of the Vulnerable Software and Affected Versions: Quantenna Wi-Fi chipset versions through 8.0.0.28 Description: The Quantenna Wi-Fi chipset has a local control script, router command.sh, that is vulnerable to command injection, specifically in the get file from qtn argument. This issue is a...

7.7CVSS5.8AI score0.0097EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2025/03/27 12:0 a.m.4 views

PT-2025-24373

Name of the Vulnerable Software and Affected Versions Quantenna Wi-Fi chipset versions prior to 8.0.0.28 Description The Quantenna Wi-Fi chipset ships with a local control script, transmit file, that is vulnerable to command injection. This issue is an instance of CWE-88, "Improper Neutralization...

7.8CVSS5.3AI score0.00614EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/03/27 12:0 a.m.5 views

PT-2025-24371

Name of the Vulnerable Software and Affected Versions Quantenna Wi-Fi chipset versions through 8.0.0.28 Description The Quantenna Wi-Fi chipset has a local control script, router command.sh, that is vulnerable to command injection, specifically in the get syslog from qtn argument. This issue is...

7.8CVSS5.2AI score0.0097EPSS
Exploits1References14
OSV
OSV
added 2019/06/27 5:15 p.m.4 views

CVE-2018-15556

The Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 allows login with root level access with the user "root" and an empty password by using the enabled onboard UART headers...

9.8CVSS5.8AI score0.03258EPSS
Exploits2References2
NVD
NVD
added 2019/06/27 5:15 p.m.32 views

CVE-2018-15556

The Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 allows login with root level access with the user "root" and an empty password by using the enabled onboard UART headers...

10CVSS9.6AI score0.03258EPSS
Exploits2References2
OSV
OSV
added 2019/06/27 5:15 p.m.5 views

CVE-2018-15557

An issue was discovered in the Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 devices. An attacker can statically set his/her IP to anything on the 169.254.1.0/24 subnet, and obtain root access by connecting to 169.254.1.2 port 23 with telnet/netcat...

8.8CVSS5.8AI score0.03258EPSS
Exploits2References2
NVD
NVD
added 2019/06/27 5:15 p.m.25 views

CVE-2018-15557

An issue was discovered in the Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 devices. An attacker can statically set his/her IP to anything on the 169.254.1.0/24 subnet, and obtain root access by connecting to 169.254.1.2 port 23 with telnet/netcat...

10CVSS8.6AI score0.03258EPSS
Exploits2References2
Prion
Prion
added 2019/06/27 5:15 p.m.20 views

Default credentials

The Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 allows login with root level access with the user "root" and an empty password by using the enabled onboard UART headers...

10CVSS9.5AI score0.03258EPSS
Exploits2References2Affected Software1
Prion
Prion
added 2019/06/27 5:15 p.m.14 views

Code injection

An issue was discovered in the Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 devices. An attacker can statically set his/her IP to anything on the 169.254.1.0/24 subnet, and obtain root access by connecting to 169.254.1.2 port 23 with telnet/netcat...

10CVSS8.5AI score0.03258EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2019/06/27 4:55 p.m.85 views

CVE-2018-15556

CVE-2018-15556 affects the Quantenna WiFi Controller in Telus Actiontec WEB6000Q (firmware v1.1.02.22). An attacker can log in as root with an empty password via the onboard UART headers, enabling full shell access. Public PoC material exists (PacketStorm/full disclosure) describing UART-based pr...

10CVSS9.5AI score0.03258EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2019/06/27 4:55 p.m.35 views

CVE-2018-15556

The Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 allows login with root level access with the user "root" and an empty password by using the enabled onboard UART headers...

9.6AI score0.03258EPSS
Exploits2References2
CVE
CVE
added 2019/06/27 4:52 p.m.73 views

CVE-2018-15557

CVE-2018-15557 affects the Quantenna WiFi Controller in Telus Actiontec WEB6000Q devices (firmware v1.1.02.22). The issue allows an attacker with access to the 169.254.1.0/24 link-local subnet to obtain root by connecting to 169.254.1.2 on TCP port 23 (telnet/netcat). Documents corroborate a priv...

10CVSS8.5AI score0.03258EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2019/06/27 4:52 p.m.20 views

CVE-2018-15557

An issue was discovered in the Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 devices. An attacker can statically set his/her IP to anything on the 169.254.1.0/24 subnet, and obtain root access by connecting to 169.254.1.2 port 23 with telnet/netcat...

8.7AI score0.03258EPSS
Exploits2References2
CNVD
CNVD
added 2019/06/13 12:0 a.m.2 views

Telus Actiontec WEB6000Q elevation of privilege vulnerability (CNVD-2019-39179)

The Actiontec WEB6000Q is a wireless extender from Actiontec USA. A security vulnerability exists in the Quantenna WiFi Controller in the Actiontec WEB6000Q version 1.1.02.22. The vulnerability can be exploited to gain root access by connecting to port 23 of host 169.254.1.2 using telnet/netcat...

10CVSS7.1AI score0.03258EPSS
Exploits2References1
CNVD
CNVD
added 2019/06/13 12:0 a.m.4 views

Telus Actiontec WEB6000Q Elevation of Privilege Vulnerability

The Actiontec WEB6000Q is a wireless extender from Actiontec USA. A security vulnerability exists in the Quantenna WiFi Controller in the Telus Actiontec WEB6000Q version 1.1.02.22. An attacker can exploit the vulnerability to log in with root access...

10CVSS6.9AI score0.02974EPSS
Exploits1References1
Rows per page
Query Builder