Onsemi Qv942c Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Onsemi Qv942c Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2025-3461 — CVSS 9.1 (critical): The Quantenna Wi-Fi chips ship with an unauthenticated telnet interface by default. This is an instance of CWE-306, "Missing Authentication…
CVE-2025-32456 — CVSS 7.7 (high): The Quantenna Wi-Fi chipset ships with a local control script, router_command.sh (in the put_file_to_qtn argument), that is vulnerable to…
CVE-2025-32457 — CVSS 7.7 (high): The Quantenna Wi-Fi chipset ships with a local control script, router_command.sh (in the get_file_from_qtn argument), that is vulnerable to…
CVE-2025-32458 — CVSS 7.7 (high): The Quantenna Wi-Fi chipset ships with a local control script, router_command.sh (in the get_syslog_from_qtn argument), that is vulnerable…
CVE-2025-32455 — CVSS 7.7 (high): The Quantenna Wi-Fi chipset ships with a local control script, router_command.sh (in the run_cmd argument), that is vulnerable to command…
CVE-2025-3459 — CVSS 7.7 (high): The Quantenna Wi-Fi chipset ships with a local control script, transmit_file, that is vulnerable to command injection. This is an instance…
CVE-2025-3460 — CVSS 7.7 (high): The Quantenna Wi-Fi chipset ships with a local control script, set_tx_pow, that is vulnerable to command injection. This is an instance of…
CVE-2025-32459 — CVSS 7.7 (high): The Quantenna Wi-Fi chipset ships with a local control script, router_command.sh (in the sync_time argument), that is vulnerable to command…