PT-2026-1102 · Qnap · Quts Hero+1
Published
2026-01-02
·
Updated
2026-01-06
·
CVE-2025-9110
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
QNAP versions prior to QTS 5.2.8.3332 build 20251128
QNAP versions prior to QuTS hero h5.2.8.3321 build 20251117
QNAP versions prior to QuTS hero h5.3.1.3250 build 20250912
Description
A flaw exists that allows unauthorized access to sensitive system information. Attackers can exploit this to read application data.
Recommendations
Update QTS to version 5.2.8.3332 build 20251128 or later.
Update QuTS hero to version h5.2.8.3321 build 20251117 or later.
Update QuTS hero to version h5.3.1.3250 build 20250912 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qts
Quts Hero