CNNVD-202508-3528 Information

CNNVD ID

CNNVD-202508-3528

Related CVE

CVE-2025-30264

• CNNVD Published: 2025-08-29

Description (Chinese)

QNAP QTS和QNAP QuTS hero都是中国台湾威联通科技（QNAP）公司的一个具有数据存储与管理功能的软件。 QNAP QTS 5.2.5.3145之前版本和QNAP QuTS hero h5.2.5.3138之前版本存在安全漏洞，该漏洞源于容易受到命令注入攻击，可能导致执行任意命令。

Description (English)

QNAP QTS and QNAP QTS hero are both software with data storage and management functions at QNAP. QNAP QTS 5.2.5.3145 and QNAP QUTS Quro h5.2.5.3138 have a security loophole, which stems from their vulnerability to command injections and may lead to arbitrary orders.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

威联通科技

Published

2025-08-29

Last Modified

2026-02-24

References

https://www.qnap.com/en/security-advisory/qsa-25-21 https://access.redhat.com/security/cve/cve-2025-30264 https://nvd.nist.gov/vuln/detail/CVE-2025-30264

Patch

https://www.qnap.com/en/security-advisory/qsa-25-21