CNNVD-202508-3538 Information

CNNVD ID

CNNVD-202508-3538

Related CVE

CVE-2025-29893

• CNNVD Published: 2025-08-29

Description (Chinese)

QNAP Qsync Central是中国台湾威联通科技（QNAP）公司的一个 NAS 上基于云的文件同步服务。 QNAP Qsync Central存在SQL注入漏洞，该漏洞源于SQL注入，可能导致执行未授权代码或命令。

Description (English)

QNAP Qsync Central is a cloud-based document synchronization service on the NAS of Taiwan Universal Technologies (QNAP). QNAP Qsync Central has an injection loophole in SQL, which originates from SQL injections and may lead to the execution of unauthorized codes or commands.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

威联通科技

Published

2025-08-29

Last Modified

2026-02-24

References

https://www.qnap.com/en/security-advisory/qsa-25-22 https://access.redhat.com/security/cve/cve-2025-29893 https://nvd.nist.gov/vuln/detail/CVE-2025-29893

Patch

https://www.qnap.com/en/security-advisory/qsa-25-22