EUVD-2026-35979

A buffer overflow vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: File Station 5 5.5.6.5208 and later...

QNAP file station 缓冲区错误漏洞

QNAP Systems File Station 5 is a file management system developed by QNAP Systems, a company based in Taiwan, China. QNAP Systems File Station 5 has a security vulnerability that stems from a buffer overflow issue. This vulnerability could allow remote attackers to modify memory or cause processe...

EUVD-2026-29563

The mem0 1.0.0 server lacks authentication and authorization controls for its memory management API endpoints. Critical functions such as updating memory records PUT /memories/memoryid are exposed without any verification of the requester's identity or permissions. A remote attacker can exploit...

CVE-2026-31240

The mem0 1.0.0 server lacks authentication and authorization controls for its memory management API endpoints. Critical functions such as updating memory records PUT /memories/memoryid are exposed without any verification of the requester's identity or permissions. A remote attacker can exploit...

CVE-2026-31240

The mem0 1.0.0 server lacks authentication and authorization controls for its memory management API endpoints. Critical functions such as updating memory records PUT /memories/memoryid are exposed without any verification of the requester's identity or permissions. A remote attacker can exploit...

CVE-2025-48723

A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.4 2026/01/20 and...

CVE-2025-48723

A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.4 2026/01/20 and...

CVE-1999-0304

mmap function in BSD allows local attackers in the kmem group to modify memory through devices...

CVE-2025-53597

CVE-2025-53597 describes a buffer overflow in QNAP License Center. The vulnerability affects License Center versions prior to 2.0.36, where an attacker with administrative privileges could trigger memory corruption or cause processes to crash. The fixed version is License Center 2.0.36 and later....

CVE-2025-53591

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to obtain secret data or modify memory. We have already fixed the vulnerabili...

CVE-2025-53591

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to obtain secret data or modify memory. We have already fixed the vulnerabili...

CVE-2025-52863 QTS, QuTS hero

A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following versions: QTS...

PT-2026-1092

Name of the Vulnerable Software and Affected Versions QNAP versions prior to 5.2.8.3332 build 20251128 Description A buffer overflow issue exists in QNAP operating system. A remote attacker gaining administrator access can exploit this to modify memory or cause processes to crash. Recommendations...

EUVD-2001-0639

Malware in sbrugna...

EUVD-2022-24910

Malicious code in bioql PyPI...

PT-2025-40565

Name of the Vulnerable Software and Affected Versions QNAP QTS versions prior to 5.2.6.3195 build 20250715 QNAP QuTS hero versions prior to 5.2.6.3195 build 20250715 Description A use of externally-controlled format string issue exists in QNAP operating systems. If an attacker obtains an...

CVE-2025-8597

MacVim's configuration on macOS, specifically the presence of entitlement "com.apple.security.get-task-allow", allows local attackers with unprivileged access e.g. via a malicious application to attach a debugger, read or modify the process memory, inject code in the application's context despite...

CVE-2025-47206

Summary: CVE-2025-47206 affects QNAP File Station 5. The vulnerability is an out-of-bounds write that could allow memory corruption when a remote attacker gains a user account. Affected software/versions: File Station 5 (prior to 5.5.6.4933). Impact: memory corruption; high severity indicators in...

CVE-2024-50399

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. We have already fixed the...

CVE-2024-50398

CVE-2024-50398 is a use of externally-controlled format string vulnerability affecting QNAP QTS and QuTS hero. The issue could allow remote attackers with administrator access to obtain secret data or modify memory. Affected versions include QTS prior to 5.2.1.2930 (build 20241025) and QuTS hero ...