Vulnerability Details CVE-2025-57714
An unquoted search path or element vulnerability has been reported to affect NetBak Replicator. If a local attacker gains a user account, they can then exploit the vulnerability to execute unauthorized code or commands.
We have already fixed the vulnerability in the following version:
NetBak Replicator 4.5.15.0807 and later
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.1%
CVSS Severity
CVSS v3 Score 7.8
Products affected by CVE-2025-57714
-
cpe:2.3:a:qnap:netbak_replicator:4.5.0.0209
-
cpe:2.3:a:qnap:netbak_replicator:4.5.1.1007
-
cpe:2.3:a:qnap:netbak_replicator:4.5.10
-
cpe:2.3:a:qnap:netbak_replicator:4.5.11
-
cpe:2.3:a:qnap:netbak_replicator:4.5.11.816
-
cpe:2.3:a:qnap:netbak_replicator:4.5.12
-
cpe:2.3:a:qnap:netbak_replicator:4.5.13
-
cpe:2.3:a:qnap:netbak_replicator:4.5.14
-
cpe:2.3:a:qnap:netbak_replicator:4.5.2.1202
-
cpe:2.3:a:qnap:netbak_replicator:4.5.3.0220
-
cpe:2.3:a:qnap:netbak_replicator:4.5.4.1110
-
cpe:2.3:a:qnap:netbak_replicator:4.5.5
-
cpe:2.3:a:qnap:netbak_replicator:4.5.6
-
cpe:2.3:a:qnap:netbak_replicator:4.5.7
-
cpe:2.3:a:qnap:netbak_replicator:4.5.8
-
cpe:2.3:a:qnap:netbak_replicator:4.5.9