PT-2025-40564 · Qnap · Qnap+1
Coral
·
Published
2025-10-03
·
Updated
2025-10-08
·
CVE-2025-48729
CVSS v4.0
5.1
Medium
| Vector | AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
QNAP versions prior to 5.2.6.3195 build 20250715
QNAP QuTS hero versions prior to 5.2.6.3195 build 20250715
Description
A NULL pointer dereference issue exists in QNAP operating systems. Successful exploitation by a remote attacker with administrator privileges could lead to a denial-of-service (DoS) attack.
Recommendations
Update QNAP to version 5.2.6.3195 build 20250715 or later.
Update QNAP QuTS hero to version 5.2.6.3195 build 20250715 or later.
Fix
DoS
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qnap
Quts Hero