CVE‑2025‑3461 is a newly assigned critical-severity vulnerability in Quantenna Wi‑Fi chipsets (used in various routers and embedded devices), where a telnet service is enabled by default with no authentication. This can allow remote attackers to gain root-level access and control raising serious security concerns.
Vulnerability Details
- CVE ID: CVE‑2025‑3461
- Affected Product: Quantenna Wi‑Fi chipset (SDK up to 8.0.0.28)
- CWE Identifier: CWE‑306 – Missing Authentication for Critical Function
- CVSS v3.1 Score: 9.1 (Critical)
- Attack Vector: Network
- Privileges Required: None
- User Interaction: None
- Scope: Unchanged
- Confidentiality: High
- Integrity: High
- Availability: None
Exploitation Path
These chipsets ship with telnet enabled by default, requiring no credentials. An attacker can connect over the network and log in as root with full system access and control without authentication. Though no public exploit is confirmed yet, this default access is a serious and immediate risk.
Mitigation Steps
If you’re using devices with Quantenna Wi‑Fi chips:
- Check Your Environment: Identify devices with the Quantenna chipset (SDK ≤ 8.0.0.28).
- Disable Telnet: Turn off or restrict the telnet interface immediately.
- Implement Network Controls: Block telnet access via firewall or VLAN segmentation.
- Follow Vendor Guidance: Apply best practices from On Semiconductor’s official recommendations.
- Monitor for Unauthorized Access: Review logs to detect telnet or root login attempts.
References & Attribution
1. https://takeonme.org/cves/cve-2025-3461/
3. NVD Entry for CVE‑2025‑3461 – National Vulnerability Database summary
https://nvd.nist.gov/vuln/detail/CVE-2025-3461
4. MITRE CVE Program – Source of CVE metadata and classification
© 1999–2025 The MITRE Corporation. Licensed under the MITRE CVE Terms of Use.
https://www.cve.org/Legal/TermsOfUse
Subscribe to CybrWolf and stay ahead of threats.