CVE-2025-66277

CRITICAL

QNAP OS - Path Traversal

Title source: llm

Description

A link following vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to traverse the file system to unintended locations. We have already fixed the vulnerability in the following versions: QTS 5.2.8.3350 build 20251216 and later QuTS hero h5.3.2.3354 build 20251225 and later QuTS hero h5.2.8.3350 build 20251216 and later

References (1)

[Vendor Advisory] https://www.qnap.com/en/security-advisory/qsa-26-05

Scores

CVSS v3 9.8

EPSS 0.0010

EPSS Percentile 26.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-59

Status published

Products (37)

qnap/qts 5.2.0.2737 build_20240417

qnap/qts 5.2.0.2744 build_20240424

qnap/qts 5.2.0.2782 build_20240601

qnap/qts 5.2.0.2802 build_20240620

qnap/qts 5.2.0.2823 build_20240711

qnap/qts 5.2.0.2851 build_20240808

qnap/qts 5.2.0.2860 build_20240817

qnap/qts 5.2.1.2930 build_20241025

qnap/qts 5.2.2.2950 build_20241114

qnap/qts 5.2.3.3006 build_20250108

... and 27 more

Published Feb 11, 2026

Tracked Since Feb 18, 2026