CVE-2025-52853

🗓️ 03 Oct 2025 18:11:42Reported by qnapType

NULL pointer dereference in QTS and QuTS hero enables DoS after admin account is compromised.

Reporter	Title	Published	Views	Family All 11
CNNVD	QNAP operating system 代码问题漏洞	3 Oct 202500:00	–	cnnvd
CNVD	QNAP QTS and QuTS hero null pointer dereference vulnerability (CNVD-2025-27558)	15 Oct 202500:00	–	cnvd
Cvelist	CVE-2025-52853 QTS, QuTS hero	3 Oct 202518:11	–	cvelist
EUVD	EUVD-2025-32330	3 Oct 202518:11	–	euvd
NVD	CVE-2025-52853	3 Oct 202519:15	–	nvd
OpenVAS	QNAP QuTS Hero Multiple Vulnerabilities (QSA-25-36)	7 Oct 202500:00	–	openvas
OpenVAS	QNAP QTS Multiple Vulnerabilities (QSA-25-36)	7 Oct 202500:00	–	openvas
OSV	CVE-2025-52853	3 Oct 202519:15	–	osv
Positive Technologies	PT-2025-40576	3 Oct 202500:00	–	ptsecurity
Tenable Nessus	Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-52853)	16 Jan 202600:00	–	nessus

NVD

Node

qnap qtsMatch5.2.0.2737build_20240417

qnap qtsMatch5.2.0.2744build_20240424

qnap qtsMatch5.2.0.2782build_20240601

qnap qtsMatch5.2.0.2802build_20240620

qnap qtsMatch5.2.0.2823build_20240711

qnap qtsMatch5.2.0.2851build_20240808

qnap qtsMatch5.2.0.2860build_20240817

qnap qtsMatch5.2.1.2930build_20241025

qnap qtsMatch5.2.2.2950build_20241114

qnap qtsMatch5.2.3.3006build_20250108

qnap qtsMatch5.2.4.3070build_20250312

qnap qtsMatch5.2.4.3079build_20250321

qnap qtsMatch5.2.4.3092build_20250403

qnap qtsMatch5.2.5.3145build_20250526

Node

qnap quts_heroMatchh5.2.0.2737build_20240417

qnap quts_heroMatchh5.2.0.2782build_20240601

qnap quts_heroMatchh5.2.0.2789build_20240607

qnap quts_heroMatchh5.2.0.2802build_20240620

qnap quts_heroMatchh5.2.0.2823build_20240711

qnap quts_heroMatchh5.2.0.2851build_20240808

qnap quts_heroMatchh5.2.0.2860build_20240817

qnap quts_heroMatchh5.2.1.2929build_20241025

qnap quts_heroMatchh5.2.1.2940build_20241105

qnap quts_heroMatchh5.2.2.2952build_20241116

qnap quts_heroMatchh5.2.3.3006build_20250108

qnap quts_heroMatchh5.2.4.3070build_20250312

qnap quts_heroMatchh5.2.4.3079build_20250321

qnap quts_heroMatchh5.2.5.3138build_20250519

[
  {
    "defaultStatus": "unaffected",
    "product": "QTS",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "5.2.6.3195 build 20250715",
        "status": "affected",
        "version": "5.2.x",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "QuTS hero",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "h5.2.6.3195 build 20250715",
        "status": "affected",
        "version": "h5.2.x",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
qnap	www.qnap.com/en/security-advisory/qsa-25-36

08 Oct 2025 19:40Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.14.9

CVSS 45.1

EPSS0.00142

SSVC

CWE-476