Total CVEs

142,714

Critical Severity

4,025

High Severity

14,400

Last 7 Days

1,395
Quick preset (or use dates below)
Clear Filters
Showing 14,401 - 14,420 of 14,826 CVEs
CVE-2025-59380 MEDIUM - 4.9

A path traversal vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the fol...

Vendor: qnap
Product: qts
Published: Jan 02, 2026
Source: NVD
CVE-2025-53597 MEDIUM - 6.5

A buffer overflow vulnerability has been reported to affect License Center. If a remote attacker gains an administrator account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: License Center 2.0.36 and l...

Vendor: qnap
Product: license_center
Published: Jan 02, 2026
Source: NVD
CVE-2025-52871 MEDIUM - 6.5

An out-of-bounds read vulnerability has been reported to affect License Center. If a remote attacker gains a user account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following version: License Center 2.0.36 and later

Vendor: qnap
Product: license_center
Published: Jan 02, 2026
Source: NVD
CVE-2025-48721 MEDIUM - 6.5

A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: QTS...

Vendor: qnap
Product: qts
Published: Jan 02, 2026
Source: NVD
CVE-2025-62857 MEDIUM - 6.1

A cross-site scripting (XSS) vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the vulnerability to bypass security mechanisms or read application data. We have already fixed the vulnerability in the following version: QuMagie 2.8.1 and later

Vendor: qnap
Product: qumagie
Published: Jan 02, 2026
Source: NVD
CVE-2025-57705 MEDIUM - 4.9

An allocation of resources without limits or throttling vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing t...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-54166 MEDIUM - 4.9

An out-of-bounds read vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following versions: QTS 5.2.7.32...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-54165 MEDIUM - 4.9

An out-of-bounds read vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following versions: QTS 5.2.7.32...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-54164 MEDIUM - 4.9

An out-of-bounds read vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following versions: QTS 5.2.7.32...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-53596 MEDIUM - 4.9

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the follow...

Vendor: qnap
Product: qts
Published: Jan 02, 2026
Source: NVD
CVE-2025-53593 MEDIUM - 6.5

A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following versions: QT...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-53592 MEDIUM - 6.5

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the following versio...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-53591 MEDIUM - 6.5

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to obtain secret data or modify memory. We have already fixed the vulnerability...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-53590 MEDIUM - 4.9

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the follow...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-53589 MEDIUM - 4.9

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the follow...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-53414 MEDIUM - 4.9

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the follow...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-53405 MEDIUM - 4.9

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the follow...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-52431 MEDIUM - 4.9

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the follow...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-52430 MEDIUM - 4.9

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the follow...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD
CVE-2025-52426 MEDIUM - 4.9

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the follow...

Vendor: qnap
Product: quts_hero
Published: Jan 02, 2026
Source: NVD