Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

QNAP Systems Inc. — Vulnerabilities & Security Advisories 532

Browse all 532 CVE security advisories affecting QNAP Systems Inc.. AI-powered Chinese analysis, POCs, and references for each vulnerability.

QNAP Systems Inc. manufactures network-attached storage devices and enterprise storage solutions, primarily serving small to medium-sized businesses and home users seeking centralized data management. Historically, the company’s firmware has exhibited a high volume of vulnerabilities, including remote code execution, cross-site scripting, and privilege escalation flaws. These issues often stem from insufficient input validation and improper access controls within the web management interface or embedded services. Notable incidents involve critical RCE vulnerabilities that allow unauthenticated attackers to gain full system control, exposing connected data to theft or ransomware encryption. The sheer number of recorded CVEs highlights persistent challenges in secure coding practices and rigorous patch management across its diverse product line. While QNAP provides security updates, the frequency of disclosed flaws necessitates strict network segmentation and proactive monitoring for administrators relying on these storage appliances for critical infrastructure.

Top products by QNAP Systems Inc.: QTS Qsync Central File Station 5 Photo Station QuRouter Video Station QuTS hero QuMagie Helpdesk Music Station QuLog Center QVR Notes Station 3 QuTScloud License Center Media Streaming add-on QVR Elite HBS 3 Hybrid Backup Sync QuNetSwitch QES Multimedia Console Download Station QuFirewall QVPN Windows Surveillance Station Proxy Server QcalAgent Malware Remover HBS 3 QmailAgent
CVE IDTitleCVSSSeverityPublished
CVE-2025-66277 QTS, QuTS hero — QTSCWE-59 7.5AIHighAI2026-02-11
CVE-2025-66278 File Station 5 — File Station 5CWE-22 6.5AIMediumAI2026-02-11
CVE-2025-68406 Qsync Central — Qsync CentralCWE-22 7.5AIHighAI2026-02-11
CVE-2026-22894 File Station 5 — File Station 5CWE-22 6.5AIMediumAI2026-02-11
CVE-2025-59389 Hyper Data Protector — Hyper Data ProtectorCWE-89 9.8 -2026-01-02
CVE-2025-62842 HBS 3 Hybrid Backup Sync — HBS 3 Hybrid Backup SyncCWE-73 7.3 -2026-01-02
CVE-2025-62840 HBS 3 Hybrid Backup Sync — HBS 3 Hybrid Backup SyncCWE-209 3.5 -2026-01-02
CVE-2025-11837 Malware Remover — Malware RemoverCWE-94 9.8 -2026-01-02
CVE-2025-62852 QTS, QuTS hero — QTSCWE-121 6.5 -2026-01-02
CVE-2025-59387 MARS (Multi-Application Recovery Service) — MARS (Multi-Application Recovery Service)CWE-89 9.8 -2026-01-02
CVE-2025-59384 Qfiling — QfilingCWE-22 7.5 -2026-01-02
CVE-2025-59381 QTS, QuTS hero — QTSCWE-22 4.9 -2026-01-02
CVE-2025-59380 QTS, QuTS hero — QTSCWE-22 4.9 -2026-01-02
CVE-2025-53597 License Center — License CenterCWE-121 8.1 -2026-01-02
CVE-2025-53594 Qfinder Pro, Qsync, QVPN — Qfinder Pro MacCWE-22 5.5 -2026-01-02
CVE-2025-52871 License Center — License CenterCWE-125 7.5 -2026-01-02
CVE-2025-48721 QTS, QuTS hero — QTSCWE-120 6.5 -2026-01-02
CVE-2025-9110 QTS, QuTS hero — QTSCWE-497 6.5 -2026-01-02
CVE-2025-57705 QTS, QuTS hero — QTSCWE-770 6.8 -2026-01-02
CVE-2025-54166 QTS, QuTS hero — QTSCWE-125 4.9 -2026-01-02
CVE-2025-54165 QTS, QuTS hero — QTSCWE-125 4.9 -2026-01-02
CVE-2025-54164 QTS, QuTS hero — QTSCWE-125 4.9 -2026-01-02
CVE-2025-53596 QTS, QuTS hero — QTSCWE-476 7.5 -2026-01-02
CVE-2025-53593 QTS, QuTS hero — QTSCWE-121 6.5 -2026-01-02
CVE-2025-53592 QTS, QuTS hero — QTSCWE-476 7.5 -2026-01-02
CVE-2025-53591 QTS, QuTS hero — QTSCWE-134 6.5 -2026-01-02
CVE-2025-53590 QTS — QTSCWE-476 7.5 -2026-01-02
CVE-2025-53589 QTS, QuTS hero — QTSCWE-476 7.5 -2026-01-02
CVE-2025-53414 QTS, QuTS hero — QTSCWE-476 7.5 -2026-01-02
CVE-2025-53405 QTS, QuTS hero — QTSCWE-476 7.5 -2026-01-02

This page lists every published CVE security advisory associated with QNAP Systems Inc.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.