CVE-2025-53592

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions QNAP versions prior to 5.2.7.3256 build 20250913 QuTS hero versions prior to h5.2.7.3256 build 20250913 QuTS hero versions prior to h5.3.1.3250 build 20250912

Description A NULL pointer dereference issue exists in QNAP operating systems. A remote attacker who has obtained a user account can exploit this issue to cause a denial-of-service (DoS) attack.

Recommendations Update to QTS version 5.2.7.3256 build 20250913 or later. Update to QuTS hero version h5.2.7.3256 build 20250913 or later. Update to QuTS hero version h5.3.1.3250 build 20250912 or later.

Fix

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

CVE-2025-53592

Affected Products

Qnap

Quts Hero

CVE-2025-53592

Weakness Enumeration

Related Identifiers

Affected Products

References · 6