CNNVD-202508-3517 Information

CNNVD ID

CNNVD-202508-3517

Related CVE

CVE-2025-30278

• CNNVD Published: 2025-08-29

Description (Chinese)

QNAP Qsync Central是中国台湾威联通科技（QNAP）公司的一个 NAS 上基于云的文件同步服务。 QNAP Qsync Central 4.5.0.7版本之前版本存在信任管理问题漏洞，该漏洞源于证书验证不当，可能危及系统安全。

Description (English)

QNAP Qsync Central is a cloud-based document synchronization service on the NAS of Taiwan Universal Technologies (QNAP). The previous version of QNAP Qsync Central 4.5.0.7 had a confidence management management gap, which stemmed from improper certification of certificates and could jeopardize system security.

Hazard Level

High

Vulnerability Type

信任管理问题

Affected Vendor

威联通科技

Published

2025-08-29

Last Modified

2026-02-24

References

https://www.qnap.com/en/security-advisory/qsa-25-22 https://nvd.nist.gov/vuln/detail/CVE-2025-30278 https://access.redhat.com/security/cve/cve-2025-30278

Patch

https://www.qnap.com/en/security-advisory/qsa-25-22