CVE-2025-66281

CVE-2025-66281 describes a NULL pointer dereference vulnerability affecting several QNAP operating system versions. According to the sources, remote attackers could exploit this to cause a denial-of-service (DoS). QNAP has issued fixes in multiple releases: QTS 5.2.9.3410 build 20260214 and later...

CVE-2025-54166

An out-of-bounds read vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following versions: QTS...

EUVD-2018-11616

Malware in sbrugna...

EUVD-2021-15472

Malware in sbrugna...

EUVD-2021-25131

Malware in sbrugna...

EUVD-2021-25119

Malware in sbrugna...

EUVD-2021-21011

Malware in sbrugna...

EUVD-2021-25121

Malware in sbrugna...

EUVD-2009-3183

Malware in sbrugna...

EUVD-2014-5344

Malware in sbrugna...

EUVD-2021-25132

Malware in sbrugna...

EUVD-2021-21014

Malware in sbrugna...

EUVD-2021-30911

Malicious code in bioql PyPI...

EUVD-2021-30913

Malicious code in bioql PyPI...

CVE-2014-5457

QNAP TS-469U with firmware 4.0.7 Build 20140410, TS-459U, TS-EC1679U-RP, and SS-839 use world-readable permissions for /etc/config/shadow, which allows local users to obtain usernames and hashed passwords by reading the password...

The vulnerability of the QuTS operating systems and QTS network devices from Qnap, related to the failure to eliminate CRLF sequences, allows attackers to execute arbitrary code.

The vulnerability of the QuTS operating systems and QTS network devices involves a lack of measures to neutralize CRLF sequences. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the QuRouter operating system for QNAP network devices is related to errors in processing input data, allowing attackers to execute arbitrary code.

The vulnerability of the QuRouter operating system for QNAP network devices is related to errors in processing input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Vulnerability of QTS and QuTS operating systems, as well as Qnap network devices, arises from the lack of measures taken to neutralize special elements used in the operating system commands. This allows attackers to execute arbitrary commands.

The vulnerability of QTS and QuTS operating systems, as well as Qnap network devices, is related to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

Vulnerability of QTS and QuTS operating systems, as well as Qnap network devices, related to the re-release of memory allows attackers to execute arbitrary code.

The vulnerability of QTS and QuTS operating systems, as well as Qnap network devices, is related to the re-release of memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending specially crafted data...

Vulnerability of QTS and QuTS operating systems, as well as QNAP network devices, related to the operation of operations beyond the buffer in memory, allowing attackers to execute arbitrary code.

The vulnerability of QTS and QuTS operating systems, as well as QNAP network devices, is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...