Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2026-41539

🗓️ 09 Jun 2026 05:51:37Reported by qnapType 
cve
 cve🔗 web.nvd.nist.gov👁 49 Views

XSS vulnerability in QTS and QuTS hero allows remote attackers to read data; fixed in listed versions.

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Circl		CVE-2026-41539
9 Jun 202607:50
circl
CNNVD		QNAP QTS 跨站脚本漏洞
9 Jun 202600:00
cnnvd
Cvelist		CVE-2026-41539 QTS, QuTS hero
9 Jun 202605:51
cvelist
EUVD		EUVD-2026-35350
9 Jun 202605:51
euvd
NVD		CVE-2026-41539
9 Jun 202606:16
nvd
Positive Technologies		PT-2026-47687
9 Jun 202600:00
ptsecurity
RedhatCVE		CVE-2026-41539
10 Jun 202608:59
redhatcve
Vulnrichment		CVE-2026-41539 QTS, QuTS hero
9 Jun 202605:51
vulnrichment
NVD
Node
qnapqtsMatch5.2.0.2737build_20240417
OR
qnapqtsMatch5.2.0.2744build_20240424
OR
qnapqtsMatch5.2.0.2782build_20240601
OR
qnapqtsMatch5.2.0.2802build_20240620
OR
qnapqtsMatch5.2.0.2823build_20240711
OR
qnapqtsMatch5.2.0.2851build_20240808
OR
qnapqtsMatch5.2.0.2860build_20240817
OR
qnapqtsMatch5.2.1.2930build_20241025
OR
qnapqtsMatch5.2.2.2950build_20241114
OR
qnapqtsMatch5.2.3.3006build_20250108
OR
qnapqtsMatch5.2.4.3070build_20250312
OR
qnapqtsMatch5.2.4.3079build_20250321
OR
qnapqtsMatch5.2.4.3092build_20250403
OR
qnapqtsMatch5.2.5.3145build_20250526
OR
qnapqtsMatch5.2.6.3195build_20250715
OR
qnapqtsMatch5.2.6.3229build_20250818
OR
qnapqtsMatch5.2.7.3256build_20250913
OR
qnapqtsMatch5.2.7.3297build_20251024
OR
qnapqtsMatch5.2.8.3332build_20251128
OR
qnapqtsMatch5.2.8.3350build_20251216
OR
qnapqtsMatch5.2.8.3359build_20251225
OR
qnapqtsMatch5.2.9.3410build_20260214
OR
qnapqtsMatch5.2.9.3451build_20260327
Node
qnapquts_heroMatchh5.2.0.2737build_20240417
OR
qnapquts_heroMatchh5.2.0.2782build_20240601
OR
qnapquts_heroMatchh5.2.0.2789build_20240607
OR
qnapquts_heroMatchh5.2.0.2802build_20240620
OR
qnapquts_heroMatchh5.2.0.2823build_20240711
OR
qnapquts_heroMatchh5.2.0.2851build_20240808
OR
qnapquts_heroMatchh5.2.0.2860build_20240817
OR
qnapquts_heroMatchh5.2.1.2929build_20241025
OR
qnapquts_heroMatchh5.2.1.2940build_20241105
OR
qnapquts_heroMatchh5.2.2.2952build_20241116
OR
qnapquts_heroMatchh5.2.3.3006build_20250108
OR
qnapquts_heroMatchh5.2.4.3070build_20250312
OR
qnapquts_heroMatchh5.2.4.3079build_20250321
OR
qnapquts_heroMatchh5.2.5.3138build_20250519
OR
qnapquts_heroMatchh5.2.6.3195build_20250715
OR
qnapquts_heroMatchh5.2.7.3256build_20250913
OR
qnapquts_heroMatchh5.2.7.3297build_20251024
OR
qnapquts_heroMatchh5.2.8.3321build_20251117
OR
qnapquts_heroMatchh5.2.8.3350build_20251216
OR
qnapquts_heroMatchh5.2.8.3359build_20251225
OR
qnapquts_heroMatchh5.2.9.3410build_20260214
OR
qnapquts_heroMatchh5.2.9.3492build_20260507
OR
qnapquts_heroMatchh5.3.0.3115build_20250430
OR
qnapquts_heroMatchh5.3.0.3145build_20250530
OR
qnapquts_heroMatchh5.3.0.3192build_20250716
OR
qnapquts_heroMatchh5.3.1.3250build_20250912
OR
qnapquts_heroMatchh5.3.1.3292build_20251024
OR
qnapquts_heroMatchh5.3.2.3354build_20251225
OR
qnapquts_heroMatchh5.3.3.3424build_20260305
OR
qnapquts_heroMatchh6.0.0.3324build_20251125
OR
qnapquts_heroMatchh6.0.0.3382build_20260122
OR
qnapquts_heroMatchh6.0.0.3397build_20260206
OR
qnapquts_heroMatchh6.0.0.3459build_20260409
[
  {
    "vendor": "QNAP Systems Inc.",
    "product": "QTS",
    "versions": [
      {
        "status": "affected",
        "version": "5.2.0",
        "lessThan": "5.2.9.3492 build 20260507",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "QNAP Systems Inc.",
    "product": "QuTS hero",
    "versions": [
      {
        "status": "affected",
        "version": "h5.2.0",
        "lessThan": "h5.2.9.3499 build 20260514",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "h5.3.0",
        "lessThan": "h5.3.4.3500 build 20260520",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "?",
        "lessThan": "h6.0.0.3500 build 20260520",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
30 Jun 2026 02:16Current
5.2Medium risk
Vulners AI Score5.2
CVSS 3.16.1
CVSS 48.7
EPSS0.00193
SSVC
CWE-79
cross site scriptingqnap operating systemquTS hero
49