CVSS 9.6 · CRITICAL
CVE-2026-25293
Buffer overflow due to incorrect authorization in PLC FW
Ver en NVDAnálisis
This vulnerability affects Qualcomm QCA7005 Powerline Communication firmware, which is a specialized hardware component used primarily in automotive and industrial IoT applications. It is not relevant to the general web, mobile, or backend software development stacks used by the community. Although the severity is critical, the impact is limited to niche hardware deployments.
Severidad
Puntaje: 9.6(CRITICAL)
Vector:
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HAV: ADJACENT_NETWORK
AC: LOW
PR: NONE
UI: NONE
S: CHANGED
C: HIGH
I: HIGH
A: HIGH
Tipo de falla (CWE):
CWE-863EPSS
Probabilidad de explotación (próx. 30 días): 0.0002 (0.0%)
Percentil: 5.7%
EPSS: 2026-05-06
Afecta
qualcomm:qca7005_firmwarequalcomm:qca7005Descripción técnica
Buffer overflow due to incorrect authorization in PLC FW
Publicada: 4/5/2026, 17:16:22
Última modificación: 6/5/2026, 18:01:11