Lucene search
K

4 matches found

OSV
OSV
added 2025/06/06 4:15 p.m.4 views

CVE-2025-29892

An SQL injection vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to execute unauthorized code or commands. We have already fixed the vulnerability in the following version: Qsync Central 4.5.0.6...

8.8CVSS6AI score0.00385EPSS
Exploits0References1
CVE
CVE
added 2025/06/06 3:53 p.m.53 views

CVE-2025-29892

CVE-2025-29892 concerns QNAP Qsync Central, where an SQL injection vulnerability could allow remote attackers with user access to execute unauthorized code or commands. Public details across sources confirm the issue originates from insufficient validation of externally entered SQL statements in ...

8.8CVSS8.4AI score0.00385EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/06/06 3:53 p.m.8 views

CVE-2025-22482 Qsync Central

A use of externally-controlled format string vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to obtain secret data or modify memory. We have already fixed the vulnerability in the following version:...

2.3CVSS0.00311EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/06 12:0 a.m.10 views

PT-2025-24293 · Qnap · Qsync Central

Name of the Vulnerable Software and Affected Versions: Qsync Central versions prior to 4.5.0.6 Description: A use of externally-controlled format string vulnerability has been reported. If exploited, the vulnerability could allow remote attackers who have gained user access to obtain secret data ...

2.3CVSS6.5AI score0.00311EPSS
Exploits0References3
Rows per page
Query Builder