Lucene search
K

17 matches found

RedhatCVE
RedhatCVE
added 2026/06/10 8:59 a.m.9 views

CVE-2026-41539

A cross-site scripting XSS vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to bypass security mechanisms or read application data. We have already fixed the vulnerability in the following versions: QTS...

8.7CVSS5.2AI score0.00193EPSS
Exploits0References1
NVD
NVD
added 2026/06/10 4:17 a.m.16 views

CVE-2026-24716

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

7.2CVSS0.00331EPSS
Exploits0References1
NVD
NVD
added 2026/06/10 4:17 a.m.19 views

CVE-2025-66281

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following versions: QTS 5.2.9.3410 build...

7.2CVSS0.00456EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/10 3:6 a.m.13 views

EUVD-2025-210102

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following versions: QTS 5.2.9.3410 build...

6.9CVSS5.5AI score0.00456EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/10 3:5 a.m.10 views

EUVD-2025-210101

An integer overflow or wraparound vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the...

5.1CVSS5.5AI score0.00435EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/10 2:34 a.m.45 views

CVE-2025-62850 QuTS hero

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS0.00331EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

Qnap QTS and QuTS hero Out-of-bounds Read (CVE-2025-54165)

An out-of-bounds read vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following versions: QTS...

6.9CVSS5.5AI score0.00286EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/02 2:56 p.m.3 views

CVE-2025-53592 QTS, QuTS hero

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following...

5.3CVSS6.5AI score0.00286EPSS
Exploits0References1
CVE
CVE
added 2026/01/02 2:55 p.m.12 views

CVE-2025-53589

CVE-2025-53589 is a NULL pointer dereference affecting multiple QNAP OS versions, allowing a remote admin to trigger a DoS. Affected fixes are explicitly documented: QTS 5.2.7.3256 build 20250913 and later; QuTS hero h5.2.7.3256 build 20250913 and later; QuTS hero h5.3.1.3250 build 20250912 and l...

5.1CVSS6.5AI score0.003EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/01/02 2:53 p.m.20 views

CVE-2025-52430 QTS, QuTS hero

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS0.003EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.5 views

Qnap QTS and QuTS hero Use of Externally-Controlled Format String (CVE-2024-50401)

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. We have already fixed the...

7.2CVSS5.5AI score0.00574EPSS
Exploits0References2
NVD
NVD
added 2025/10/03 7:15 p.m.5 views

CVE-2025-52433

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS0.00356EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/03 6:14 p.m.10 views

CVE-2025-52862 QTS, QuTS hero

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS0.00356EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/03 6:11 p.m.7 views

CVE-2025-52432 QTS, QuTS hero

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS0.00356EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/31 6:11 p.m.4 views

CVE-2025-30272

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following versions: QTS 5.2.5.3145 build 20250526 and later...

6.5CVSS6.8AI score0.00289EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/31 6:11 p.m.5 views

CVE-2025-30267

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following...

6.5CVSS6.9AI score0.0034EPSS
Exploits0References1
OSV
OSV
added 2021/05/21 3:15 a.m.4 views

CVE-2021-28798

A relative path traversal vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. If exploited, this vulnerability allows attackers to modify files that impact system integrity. QNAP have already fixed this vulnerability in the following versions: QTS 4.5.2.1630 Build 202104...

7.5CVSS7AI score0.00938EPSS
Exploits0References1
Rows per page
Query Builder