CNNVD-202511-740 Information

CNNVD ID

CNNVD-202511-740

Related CVE

CVE-2025-58469

• CNNVD Published: 2025-11-07

Description (Chinese)

QNAP Systems QuLog Center是中国威联通科技（QNAP Systems）公司的一个报告栏，里面记录了系统汇报出来的各项事件。 QNAP Systems QuLog Center 1.8.2.927之前版本存在跨站请求伪造漏洞，该漏洞源于容易受到跨站请求伪造攻击，可能导致权限提升或用户身份劫持。

Description (English)

QNAP Systems QLog Center is a reporting column of QNAP Systems Corporation, China, which records incidents reported by the system. QNAP Systems QLog Center 1.8.2.927 has a pre-version of a false breach in cross-site requests, which arises out of the vulnerability of cross-site requests to false attacks, which may lead to power enhancement or user identity hijacking.

Hazard Level

High

Vulnerability Type

跨站请求伪造

Affected Vendor

威联通科技

Published

2025-11-07

Last Modified

2026-02-24

References

https://www.qnap.com/en/security-advisory/qsa-25-42 https://access.redhat.com/security/cve/cve-2025-58469