CVE-2025-29893

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Qsync Central versions prior to 4.5.0.7

Description An SQL injection vulnerability exists in Qsync Central. A remote attacker gaining a user account can exploit this issue to execute unauthorized code or commands.

Recommendations Update to Qsync Central version 4.5.0.7 or later.

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2025-29893

Affected Products

Qsync Central

CVE-2025-29893

Weakness Enumeration

Related Identifiers

Affected Products

References · 4