Quantenna Wi-Fi chipsets ship with an unauthenticated telnet interface enabled by default, allowing remote attackers to gain full administrative access without credentials. This affects Quantenna Wi-Fi chipset SDK through version 8.0.0.28, and while no official patch has been released at the time of CVE publication, the vendor has provided a best practices guide for implementors. The vulnerability enables both complete confidentiality and integrity compromise of affected devices.
Authentication Bypass
Qv860 Firmware
Qcs Ax3 T8 Firmware
Qcs Ax3 T12 Firmware
Qv840c Firmware
+14
NVD
CVSS 3.1
9.1
EPSS
0.1%