CNNVD-202508-3527 Information

CNNVD ID

CNNVD-202508-3527

Related CVE

CVE-2025-30265

• CNNVD Published: 2025-08-29

Description (Chinese)

QNAP QTS和QNAP QuTS hero都是中国台湾威联通科技（QNAP）公司的一个具有数据存储与管理功能的软件。 QNAP QTS 5.2.5.3145版本之前版本和QNAP QuTS hero h5.2.5.3138版本之前版本存在安全漏洞，该漏洞源于缓冲区溢出，可能导致内存修改或进程崩溃。

Description (English)

QNAP QTS and QNAP QTS hero are both software with data storage and management functions at QNAP. There is a security loophole in the pre-QNAP QTS 5.2.5345 and pre-QNAP QNAP QETS hero h5.2.5.3138, which originates from the spilling of the buffer zone and could lead to memory modifications or process collapse.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

威联通科技

Published

2025-08-29

Last Modified

2026-02-24

References

https://www.qnap.com/en/security-advisory/qsa-25-21 https://access.redhat.com/security/cve/cve-2025-30265 https://nvd.nist.gov/vuln/detail/CVE-2025-30265

Patch

https://www.qnap.com/en/security-advisory/qsa-25-21