CVE-2025-59384

CVSS Score & Metrics

Base Score

7.5 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N                                    

Vulnerability Description

A path traversal vulnerability has been reported to affect Qfiling. The remote attackers can then exploit the vulnerability to read the contents of unexpected files or system data.

We have already fixed the vulnerability in the following version:
Qfiling 3.13.1 and later

Vulnerability Details

Published Date

January 02, 2026

Last Modified

January 22, 2026

CWE ID

CWE-22

Source

NVD

Vendor

qnap

Product

qfiling

External References

https://www.qnap.com/en/security-advisory/qsa-25-54

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment