Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / qnap

qnap

613 tracked vulnerabilities.

CVE-2026-22902 MEDIUM

CVE-2026-22901 CRITICAL

CVE-2026-22900 CRITICAL

CVE-2026-22898 CRITICAL

QNAP QVR Pro < 2.7.4.14 - Missing Authentication for Critical Function

CVE-2026-22897 CRITICAL

CVE-2026-22895 MEDIUM

CVE-2026-22894 MEDIUM

QNAP File Station 5.5.6.4691-5.5.6.5190 - Authenticated Path Traversal

CVE-2025-62846 MEDIUM

QNAP QuRouter < 2.6.2.007 - Local Admin SQL Injection

CVE-2025-62845 MEDIUM

QNAP QuRouter < 2.6.3.009 - Local Admin Control Sequence Injection

CVE-2025-62844 MEDIUM

QNAP QuRouter < 2.6.2.007 - Weak Authentication Information Disclosure

CVE-2025-62843 MEDIUM

QNAP QuRouter < 2.6.3.009 - Physical Endpoint Privilege Bypass

CVE-2025-59383 CRITICAL

Media Streaming Add-on

CVE-2025-59388 CRITICAL

Hyper Data Protector <2.3.1.455 - Auth Bypass

CVE-2025-68406 MEDIUM

Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Path Traversal

CVE-2025-66278 MEDIUM

File Station 5 <5.5.6.5190 - Path Traversal

CVE-2025-66277 CRITICAL

QNAP QTS and QuTS hero - Unauthenticated Path Traversal via Symbolic Link Following

CVE-2025-66274 MEDIUM

QNAP QuTS hero - Denial of Service via NULL Pointer Dereference

CVE-2025-62856 MEDIUM

QNAP File Station 5.5.6.4691-5.5.6.5190 - Authenticated Path Traversal

CVE-2025-62855 MEDIUM

QNAP File Station 5.5.6.4691-5.5.6.5190 - Authenticated Path Traversal

CVE-2025-62854 MEDIUM

QNAP File Station 5.5.6.4691-5.5.6.5190 - Authenticated Denial of Service

CVE-2025-62853 MEDIUM

QNAP File Station 5.5.6.4691-5.5.6.5165 - Authenticated Path Traversal

CVE-2025-59386 MEDIUM

QNAP QuTS hero - Denial of Service via NULL Pointer Dereference

CVE-2025-58472 MEDIUM

Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Denial of Service via NULL Pointer Dereference

CVE-2025-58471 MEDIUM

Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Denial of Service via Resource Exhaustion

CVE-2025-58470 MEDIUM

Qsync Central <5.0.0.4 - Path Traversal

Page 1 of 25 Next

Products

qts 272 quts_hero 223 qsync_central 62 qutscloud 62 file_station 48 photo_station 26 video_station 15 media_streaming_add-on 13 music_station 13 qurouter 12 helpdesk 11 qumagie 10 qvr 10 qulog_center 8 nas_proxy_server 7 q\'center 7 hybrid_backup_sync 6 notes_station_3 6 qvr_pro 6 license_center 5 multimedia_console 5 qunetswitch 5 qvr_elite 5 qvr_guard 5 qes 4 download_station 3 qcalagent 3 qufirewall 3 qvp-21a_firmware 3 qvp-41a_firmware 3

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy