PT-2026-1089 · Qnap · Quts Hero+1
Coral
·
Published
2026-01-02
·
Updated
2026-01-02
·
CVE-2025-57705
CVSS v3.1
4.9
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
QNAP versions prior to QTS 5.2.7.3256 build 20250913
QNAP versions prior to QuTS hero h5.2.7.3256 build 20250913
QNAP versions prior to QuTS hero h5.3.1.3250 build 20250912
Description
A resource allocation issue exists in QNAP operating systems. An attacker gaining administrator access can exploit this to exhaust resources, potentially preventing other systems, applications, or processes from accessing those resources.
Recommendations
Update to QTS 5.2.7.3256 build 20250913 or later.
Update to QuTS hero h5.2.7.3256 build 20250913 or later.
Update to QuTS hero h5.3.1.3250 build 20250912 or later.
Fix
Allocation of Resources Without Limits
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qts
Quts Hero