CVE-2025-32457 | ON Semiconductor Quantenna Wi-Fi Chipset up to 8.0.0.28 router_command.sh get_file_from_qtn argument injection (EUVD-2025-17408)

Inserito da Angelo Barbosa | Giu 9, 2025 | CVE

A vulnerability was found in ON Semiconductor Quantenna Wi-Fi Chipset up to 8.0.0.28. It has been declared as critical. This vulnerability affects unknown code of the file router_command.sh. The manipulation of the argument get_file_from_qtn leads to argument injection.

This vulnerability was named CVE-2025-32457. The attack needs to be approached locally. There is no exploit available.

CVE-2025-32457 | ON Semiconductor Quantenna Wi-Fi Chipset up to 8.0.0.28 router_command.sh get_file_from_qtn argument injection (EUVD-2025-17408)

Post correlati

CVE-2024-36505 | Fortinet FortiOS up to 6.4.15/7.0.14/7.2.7/7.4.3 access control (FG-IR-24-012)

CVE-2024-30530 | Sonaar Music MP3 Audio Player for Music, Radio & Podcast Plugin cross site scripting

CVE-2024-1862 | WooCommerce Add to Cart Custom Redirect Plugin up to 1.2.13 on WordPress Options Update authorization

CVE-2023-29431 | OntheGoSystems qTranslate X Cleanup and WPML Import Plugin up to 3.0.1 on WordPress authorization