CVE-2025-59601
6.5 MEDIUMInformation Disclosure when resetting device to factory default settings through powerline interface allows unauthorized access to device...
Published: 2026-06-01 · Last updated: 2026-06-02
Severity and scoring
- CVSS
- 6.5 MEDIUM
- Vector
- CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- CWE
- CWE-1230
Affected products
| Vendor | Product |
|---|---|
| qualcomm | fastconnect_7800_firmware, qca7005_firmware, snapdragon_ar1_gen_1_platform_firmware |
Description
Information Disclosure when resetting device to factory default settings through powerline interface allows unauthorized access to device configuration.
Source: NVD
References
Related CVEs
Same vendor
- CVE-2026-25277 — Memory corruption while using Strongbox due to buffer overflow (8.8 HIGH)
- CVE-2026-25276 — Memory corruption while using Strongbox due to missing bounds check (8.8 HIGH)
- CVE-2026-25260 — Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications (7.8 HIGH)
- CVE-2026-25259 — Memory corruption while processing multiple IOCTL command for escape operations (7.8 HIGH)
- CVE-2026-25258 — Memory corruption while processing IOCTL calls for escape operations (7.8 HIGH)
Same CWE
- CVE-2026-45544 — Nextcloud is an open source content collaboration platform (4.3 MEDIUM)
- CVE-2026-49270 — Exposure of Sensitive Information Through Metadata vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All (5.9 MEDIUM)