CNNVD-202510-454 Information

CNNVD ID

CNNVD-202510-454

Related CVE

CVE-2025-33034

• CNNVD Published: 2025-10-03

Description (Chinese)

QNAP Qsync Central是中国台湾威联通科技（QNAP）公司的一个 NAS 上基于云的文件同步服务。 QNAP Qsync Central 5.0.0.1之前版本存在路径遍历漏洞，该漏洞源于路径遍历问题，可能导致读取意外文件或系统数据。

Description (English)

QNAP Qsync Central is a cloud-based document synchronization service on the NAS of Taiwan Universal Technologies (QNAP). The previous version of QNAP Qsync Central 5.0.0.1 had a path-to-penetrating loophole, which originated in a QNAP Qsync Center problem and could lead to an unexpected file or system data reading.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

威联通科技

Published

2025-10-03

Last Modified

2026-02-24

References

https://www.qnap.com/en/security-advisory/qsa-25-34

Patch

https://www.qnap.com/en/security-advisory/qsa-25-34