CNNVD-202508-3520 Information

CNNVD ID

CNNVD-202508-3520

Related CVE

CVE-2025-30274

• CNNVD Published: 2025-08-29

Description (Chinese)

QNAP QTS和QNAP QuTS hero都是中国台湾威联通科技（QNAP）公司的一个具有数据存储与管理功能的软件。 QNAP QTS 5.2.5.3145版本之前版本和QNAP QuTS hero h5.2.5.3138版本之前版本存在代码问题漏洞，该漏洞源于空指针取消引用，可能导致拒绝服务攻击。

Description (English)

QNAP QTS and QNAP QTS hero are both software with data storage and management functions at QNAP. The pre-QNAP QTS 5.2.5.3145 and pre-QNAP QNAP QETS hero h5.2.5.3138 had a code problem gap, which stemmed from the removal of references from the empty pointer and could lead to a denial of service attack.

Hazard Level

Critical

Vulnerability Type

代码问题

Affected Vendor

威联通科技

Published

2025-08-29

Last Modified

2026-02-24

References

https://www.qnap.com/en/security-advisory/qsa-25-21 https://access.redhat.com/security/cve/cve-2025-30274 https://nvd.nist.gov/vuln/detail/CVE-2025-30274

Patch

https://www.qnap.com/en/security-advisory/qsa-25-21