Vulnerabilities ›

CVE-2025-59601

Medium

CWE-1230 — Weakness Type

                    Published: Jun 1, 2026                      ·  Modified: Jun 4, 2026                      ·  Source: NVD                

CVSS v3

6.5

🔗 NVD Official

📄 Description (English)

Information Disclosure when resetting device to factory default settings through powerline interface allows unauthorized access to device configuration.

🤖 AI Executive Summary

CVE-2025-59601 is a medium-severity information disclosure vulnerability affecting devices with powerline interfaces during factory reset operations. Attackers can access sensitive device configuration data without authorization, potentially exposing credentials and network settings. The absence of available patches and unspecified affected products create immediate risk for organizations relying on powerline communication technologies.

📄 Description (Arabic)

🤖 AI Intelligence Analysis Analyzed: Jun 2, 2026 02:18

🇸🇦 Saudi Arabia Impact Assessment

This vulnerability primarily impacts Saudi energy sector organizations (ARAMCO, regional utilities) and smart grid infrastructure relying on powerline communication (PLC) technologies. Telecommunications providers (STC, Mobily) deploying powerline-based backhaul systems face configuration exposure risks. Government entities managing critical infrastructure and banking institutions with powerline-integrated systems are at moderate risk. The vulnerability could expose SCADA/ICS configurations in power distribution networks.

🏢 Affected Saudi Sectors

Energy/Utilities (ARAMCO, regional power companies) Telecommunications (STC, Mobily, Zain) Government/Critical Infrastructure Smart Grid/SCADA Systems Manufacturing/Industrial Control Systems

🎯 MITRE ATT&CK Techniques

T1526 - Reconnaissance T1592 - Gather Victim Identity Information T1589 - Gather Victim Identity Information T1040 - Traffic Sniffing T1557 - Man-in-the-Middle T1110 - Brute Force

⚖️ Saudi Risk Score (AI)

6.8

/ 10.0

🔧 Remediation Steps (English)

Immediate Actions:

1. Inventory all devices with powerline interfaces across your infrastructure

2. Restrict physical and network access to powerline-connected devices

3. Disable factory reset functionality via powerline interface if possible through firmware configuration

4. Monitor powerline communication channels for unauthorized reset attempts



Compensating Controls:

1. Implement network segmentation isolating powerline devices from critical systems

2. Enable authentication/encryption on powerline communication protocols (HomePlug AV2 encryption)

3. Deploy physical security controls around powerline-connected equipment

4. Maintain encrypted backups of device configurations separately

5. Implement audit logging for all device reset operations



Detection Rules:

1. Monitor for unexpected factory reset commands on powerline devices

2. Alert on configuration file access during reset sequences

3. Track unauthorized powerline interface communications

4. Log all credential/configuration exports from affected devices

🔧 خطوات المعالجة (العربية)

الإجراءات الفورية:

1. قم بحصر جميع الأجهزة ذات واجهات خطوط الكهرباء عبر البنية التحتية

2. قيد الوصول المادي والشبكي للأجهزة المتصلة بخطوط الكهرباء

3. عطل وظيفة إعادة تعيين المصنع عبر واجهة خطوط الكهرباء إن أمكن من خلال تكوين البرامج الثابتة

4. راقب قنوات اتصال خطوط الكهرباء للكشف عن محاولات إعادة التعيين غير المصرح بها

الضوابط البديلة:

1. تطبيق تقسيم الشبكة لعزل أجهزة خطوط الكهرباء عن الأنظمة الحرجة

2. تفعيل المصادقة والتشفير على بروتوكولات اتصال خطوط الكهرباء

3. نشر ضوابط الأمان المادي حول المعدات المتصلة بخطوط الكهرباء

4. الحفاظ على نسخ احتياطية مشفرة من تكوينات الجهاز بشكل منفصل

5. تطبيق تسجيل التدقيق لجميع عمليات إعادة تعيين الجهاز

قواعد الكشف:

1. راقب أوامر إعادة التعيين غير المتوقعة على أجهزة خطوط الكهرباء

2. تنبيهات الوصول إلى ملفات التكوين أثناء تسلسل إعادة التعيين

3. تتبع اتصالات واجهة خطوط الكهرباء غير المصرح بها

4. تسجيل جميع عمليات تصدير بيانات الاعتماد والتكوين من الأجهزة المتأثرة

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

ECC 2024 A.5.1.1 - Access Control Policies ECC 2024 A.8.2.1 - User Registration and Access Rights ECC 2024 A.12.4.1 - Event Logging ECC 2024 A.13.1.1 - Information Security Incident Procedures

🔵 SAMA CSF

SAMA CSF ID.AM-2 - Hardware and Software Inventory SAMA CSF PR.AC-1 - Access Control Policy SAMA CSF DE.AE-1 - Anomalies and Events Detection SAMA CSF RS.AN-1 - Characterization of Incident

🟡 ISO 27001:2022

ISO 27001:2022 A.5.3 - Segregation of Duties ISO 27001:2022 A.8.1.1 - Screening ISO 27001:2022 A.8.3.1 - Password Management ISO 27001:2022 A.12.4.1 - Event Logging

🟣 PCI DSS v4.0.1

PCI DSS 1.1 - Firewall Configuration Standards PCI DSS 2.1 - Default Passwords PCI DSS 10.2 - User Access Logging

🔗 References & Sources 1

🔗

https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html

product-security@qualcomm.com

Vendor Advisory

📦 Affected Products / CPE 8 entries

qualcomm:fastconnect_7800_firmware:-

qualcomm:qca7005_firmware:-

qualcomm:snapdragon_ar1_gen_1_platform_firmware:-

qualcomm:wcd9380_firmware:-

qualcomm:wcd9385_firmware:-

qualcomm:wsa8830_firmware:-

qualcomm:wsa8832_firmware:-

qualcomm:wsa8835_firmware:-

📊 CVSS Score

6.5

/ 10.0 — Medium

📊 CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack VectorA — Adjacent

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityH — High

IntegrityN — None / Network

AvailabilityN — None / Network

📋 Quick Facts

Severity Medium

CVSS Score6.5

CWECWE-1230

EPSS0.02%

Exploit No

Patch ✗ No

Published 2026-06-01

Source Feed nvd

🇸🇦 Saudi Risk Score

6.8

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

CWE-1230

🏢 Vendor Advisories

🔗 https://docs.qualcomm.com/product/publicresources/se...

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2025-59601

Introduce Yourself

Sign In Required