CNNVD-202602-1993 Information

CNNVD ID

CNNVD-202602-1993

Related CVE

CVE-2025-30269

• CNNVD Published: 2026-02-11

Description (Chinese)

QNAP Qsync Central是中国台湾威联通科技（QNAP）公司的一个 NAS 上基于云的文件同步服务。 QNAP Qsync Central5.0.0.4之前版本存在格式化字符串错误漏洞，该漏洞源于使用外部控制的格式字符串，可能导致获取秘密数据或修改内存。

Description (English)

QNAP Qsync Central is a cloud-based document synchronization service on the NAS of Taiwan Universal Technologies (QNAP). QNAP Qsync Central 5.0.0.4 has a formatted string error loophole, which results from the use of externally controlled format string, which may lead to the acquisition of secret data or the modification of memory.

Hazard Level

Medium

Vulnerability Type

格式化字符串错误

Affected Vendor

威联通科技

Published

2026-02-11

Last Modified

2026-02-24

References

https://www.qnap.com/en/security-advisory/qsa-26-02 https://access.redhat.com/security/cve/cve-2025-30269

Patch

https://www.qnap.com/en/security-advisory/qsa-26-02