Yuze Wu

**Name of the Vulnerable Software and Affected Versions** QNAP versions prior to 5.2.8.3332 build 20251128 **Description** A buffer overflow issue exists in QNAP operating system. A remote attacker gaining administrator access can exploit this to modify memory or cause processes to crash. **Recommendations** Update to QTS 5.2.8.3332 build 20251128 or later.

**Name of the Vulnerable Software and Affected Versions** QNAP versions prior to QTS 5.2.6.3195 build 20250715 QNAP versions prior to QuTS hero h5.2.6.3195 build 20250715 **Description** A command injection issue exists in QNAP operating systems. A remote attacker with administrator privileges can execute arbitrary commands. **Recommendations** Update QTS to version 5.2.6.3195 build 20250715 or later. Update QuTS hero to version h5.2.6.3195 build 20250715 or later.