CVE-2025-59601

MEDIUM
Published Jun 1, 2026 Modified Jun 2, 2026 CWE-1230

Description

Information Disclosure when resetting device to factory default settings through powerline interface allows unauthorized access to device configuration.

Is your site exposed to CVE-2025-59601?

Run a free security scan — no signup, results in seconds.

CVSS v3.1 Score

6.5
MEDIUM
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS — Exploit Prediction

0.0011
Probability of exploitation
0.01%
Percentile rank

EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.

Weakness Type (CWE)

CWE-1230 CWE-1230

Affected Products

Vendor Product
qualcomm fastconnect_7800_firmware
qualcomm fastconnect_7800
qualcomm qca7005_firmware
qualcomm qca7005
qualcomm snapdragon_ar1_gen_1_platform_firmware
qualcomm snapdragon_ar1_gen_1_platform
qualcomm wcd9380_firmware
qualcomm wcd9380
qualcomm wcd9385_firmware
qualcomm wcd9385
qualcomm wsa8830_firmware
qualcomm wsa8830
qualcomm wsa8832_firmware
qualcomm wsa8832
qualcomm wsa8835_firmware
qualcomm wsa8835

References

Frequently Asked Questions

What is CVE-2025-59601? +
Information Disclosure when resetting device to factory default settings through powerline interface allows unauthorized access to device configuration. It has a CVSS v3.1 base score of 6.5 (MEDIUM).
How severe is CVE-2025-59601? +
CVE-2025-59601 has a CVSS v3.1 score of 6.5 out of 10, rated MEDIUM. This is a medium-severity vulnerability that should be remediated as part of regular maintenance. The EPSS score is 0.0011, placing it in the 0th percentile for exploitation probability.
What products are affected by CVE-2025-59601? +
CVE-2025-59601 affects products from qualcomm, specifically: fastconnect_7800, fastconnect_7800_firmware, qca7005, qca7005_firmware, snapdragon_ar1_gen_1_platform, snapdragon_ar1_gen_1_platform_firmware, wcd9380, wcd9380_firmware, wcd9385, wcd9385_firmware, wsa8830, wsa8830_firmware, wsa8832, wsa8832_firmware, wsa8835, wsa8835_firmware. Check the affected products table above for specific version ranges.
How do I check if I'm vulnerable to CVE-2025-59601? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2025-59601 — free, no signup required.