CVE-2025-32459
ON Semiconductor Quantenna router_command.sh (in the sync_time argument) Argument Injection
We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
ON Semiconductor Quantenna router_command.sh (in the sync_time argument) Argument Injection
The Quantenna Wi-Fi chipset ships with a local control script, router_command.sh (in the sync_time argument), that is vulnerable to command injection. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')," and is estimated as a CVSS 7.7 ( CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N) https://www.first.org/cvss/calculator/3-1#CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N) . This issue affects Quantenna Wi-Fi chipset through version 8.0.0.28 of the latest SDK, and appears to be unpatched at the time of this CVE record's first publishing, though the vendor has released a best practices guide for implementors of this chipset.
Reserved 2025-04-08 | Published 2025-06-08 | Updated 2025-06-09 | Assigner AHACWE-88 Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
Ricky "HeadlessZeke" Lawshae of Keysight
todb
takeonme.org/cves/cve-2025-3460
community.onsemi.com/...-support-and-security-best-practices
Support options
