PT-2026-7563 · Qnap · Qnap Qts+1
Coral
·
Published
2026-02-11
·
Updated
2026-02-12
·
CVE-2025-58466
CVSS v3.1
4.9
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
QNAP QTS versions prior to 5.2.8.3332 build 20251128
QNAP QuTS hero versions prior to h5.2.8.3321 build 20251117
Description
A use of uninitialized variable issue exists in QNAP operating systems. A remote attacker gaining administrator access could potentially cause a denial of service or unexpected control flow modification.
Recommendations
Update QTS to version 5.2.8.3332 build 20251128 or later.
Update QuTS hero to version h5.2.8.3321 build 20251117 or later.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qnap Qts
Qnap Quts Hero