qnap
613 tracked vulnerabilities.
CVE-2025-57712
MEDIUM
Qsync Central 5.0.0.0-5.0.0.2 - Authenticated Path Traversal
Nov 07, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-57706
MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5017 - Authenticated Cross-Site Scripting
Nov 07, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-54168
MEDIUM
QuLog Center 1.8.0.872-1.8.2.923 - Authenticated Cross-Site Scripting
Nov 07, 2025
CVSS 4.8
EPSS 0.00
CVE-2025-53413
MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5017 - Authenticated Denial of Service via Resource Exhaustion
Nov 07, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-53412
MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5017 - Authenticated Denial of Service via NULL Pointer Dereference
Nov 07, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-53411
MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5018 - Authenticated Denial of Service via Resource Exhaustion
Nov 07, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-53410
MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5017 - Authenticated Denial of Service
Nov 07, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-53409
MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5017 - Authenticated Denial of Service
Nov 07, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-53408
MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5018 - Authenticated Denial of Service via NULL Pointer Dereference
Nov 07, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-52865
MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5017 - Authenticated Denial of Service via NULL Pointer Dereference
Nov 07, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-52425
CRITICAL
QuMagie >= 2.6.0 < 2.7.0 - SQL Injection
Nov 07, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-47207
MEDIUM
QNAP File Station 5.5.6.4691-5.5.6.5017 - Denial of Service via NULL Pointer Dereference
Nov 07, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-57714
HIGH
NetBak Replicator <4.5.15.0807 - Code Injection
Oct 03, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-54154
MEDIUM
QNAP Authenticator 1.3.0-1.3.1.1226 - Improper Authentication
Oct 03, 2025
CVSS 6.8
EPSS 0.00
CVE-2025-54153
HIGH
Qsync Central 5.0.0.0-5.0.0.1 - Authenticated SQL Injection
Oct 03, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-53595
HIGH
Qsync Central <5.0.0.2 - SQL Injection
Oct 03, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-53407
MEDIUM
QNAP QTS and QuTS hero - Use of Externally-Controlled Format String
Oct 03, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-53406
MEDIUM
QNAP QTS and QuTS hero - Use of Externally-Controlled Format String
Oct 03, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-52867
MEDIUM
Qsync Central 5.0.0.0-5.0.0.1 - Authenticated Denial of Service via Resource Consumption
Oct 03, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-52866
MEDIUM
QNAP QTS and QuTS hero - Denial of Service via NULL Pointer Dereference
Oct 03, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-52862
MEDIUM
QNAP QTS and QuTS hero - Denial of Service via NULL Pointer Dereference
Oct 03, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-52860
MEDIUM
QNAP QTS and QuTS hero - Denial of Service via NULL Pointer Dereference
Oct 03, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-52859
MEDIUM
QNAP QTS and QuTS hero - Denial of Service via NULL Pointer Dereference
Oct 03, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-52858
MEDIUM
QNAP QTS and QuTS hero - Denial of Service via NULL Pointer Dereference
Oct 03, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-52857
MEDIUM
QNAP QTS and QuTS hero - Denial of Service via NULL Pointer Dereference
Oct 03, 2025
CVSS 4.9
EPSS 0.00
Products
qts 272
quts_hero 223
qsync_central 62
qutscloud 62
file_station 48
photo_station 26
video_station 15
media_streaming_add-on 13
music_station 13
qurouter 12
helpdesk 11
qumagie 10
qvr 10
qulog_center 8
nas_proxy_server 7
q\'center 7
hybrid_backup_sync 6
notes_station_3 6
qvr_pro 6
license_center 5
multimedia_console 5
qunetswitch 5
qvr_elite 5
qvr_guard 5
qes 4
download_station 3
qcalagent 3
qufirewall 3
qvp-21a_firmware 3
qvp-41a_firmware 3
Quick Filters