CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-59380

A path traversal vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following versions: QTS 5.2.8.3332 build 20251128 and later QuTS hero h5.2.8.3321 build 20251117 and later

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 15.2%

CVSS Severity

CVSS v3 Score 4.9

References

https://www.qnap.com/en/security-advisory/qsa-25-51

Products affected by CVE-2025-59380

Qnap » Qts » Version: 5.2.0.2737

cpe:2.3:o:qnap:qts:5.2.0.2737
Qnap » Qts » Version: 5.2.0.2744

cpe:2.3:o:qnap:qts:5.2.0.2744
Qnap » Qts » Version: 5.2.0.2782

cpe:2.3:o:qnap:qts:5.2.0.2782
Qnap » Qts » Version: 5.2.0.2802

cpe:2.3:o:qnap:qts:5.2.0.2802
Qnap » Qts » Version: 5.2.0.2823

cpe:2.3:o:qnap:qts:5.2.0.2823
Qnap » Qts » Version: 5.2.0.2851

cpe:2.3:o:qnap:qts:5.2.0.2851
Qnap » Qts » Version: 5.2.0.2860

cpe:2.3:o:qnap:qts:5.2.0.2860
Qnap » Qts » Version: 5.2.1.2930

cpe:2.3:o:qnap:qts:5.2.1.2930
Qnap » Qts » Version: 5.2.2.2950

cpe:2.3:o:qnap:qts:5.2.2.2950
Qnap » Qts » Version: 5.2.3.3006

cpe:2.3:o:qnap:qts:5.2.3.3006
Qnap » Qts » Version: 5.2.4.3070

cpe:2.3:o:qnap:qts:5.2.4.3070
Qnap » Qts » Version: 5.2.4.3079

cpe:2.3:o:qnap:qts:5.2.4.3079
Qnap » Qts » Version: 5.2.4.3092

cpe:2.3:o:qnap:qts:5.2.4.3092
Qnap » Qts » Version: 5.2.5.3145

cpe:2.3:o:qnap:qts:5.2.5.3145
Qnap » Qts » Version: 5.2.6.3195

cpe:2.3:o:qnap:qts:5.2.6.3195
Qnap » Qts » Version: 5.2.6.3229

cpe:2.3:o:qnap:qts:5.2.6.3229
Qnap » Qts » Version: 5.2.7.3256

cpe:2.3:o:qnap:qts:5.2.7.3256
Qnap » Qts » Version: 5.2.7.3297

cpe:2.3:o:qnap:qts:5.2.7.3297
Qnap » Quts Hero » Version: h5.2.0.2737

cpe:2.3:o:qnap:quts_hero:h5.2.0.2737
Qnap » Quts Hero » Version: h5.2.0.2782

cpe:2.3:o:qnap:quts_hero:h5.2.0.2782
Qnap » Quts Hero » Version: h5.2.0.2789

cpe:2.3:o:qnap:quts_hero:h5.2.0.2789
Qnap » Quts Hero » Version: h5.2.0.2802

cpe:2.3:o:qnap:quts_hero:h5.2.0.2802
Qnap » Quts Hero » Version: h5.2.0.2823

cpe:2.3:o:qnap:quts_hero:h5.2.0.2823
Qnap » Quts Hero » Version: h5.2.0.2851

cpe:2.3:o:qnap:quts_hero:h5.2.0.2851
Qnap » Quts Hero » Version: h5.2.0.2860

cpe:2.3:o:qnap:quts_hero:h5.2.0.2860
Qnap » Quts Hero » Version: h5.2.1.2929

cpe:2.3:o:qnap:quts_hero:h5.2.1.2929
Qnap » Quts Hero » Version: h5.2.1.2940

cpe:2.3:o:qnap:quts_hero:h5.2.1.2940
Qnap » Quts Hero » Version: h5.2.2.2952

cpe:2.3:o:qnap:quts_hero:h5.2.2.2952
Qnap » Quts Hero » Version: h5.2.3.3006

cpe:2.3:o:qnap:quts_hero:h5.2.3.3006
Qnap » Quts Hero » Version: h5.2.4.3070

cpe:2.3:o:qnap:quts_hero:h5.2.4.3070
Qnap » Quts Hero » Version: h5.2.4.3079

cpe:2.3:o:qnap:quts_hero:h5.2.4.3079
Qnap » Quts Hero » Version: h5.2.5.3138

cpe:2.3:o:qnap:quts_hero:h5.2.5.3138
Qnap » Quts Hero » Version: h5.2.6.3195

cpe:2.3:o:qnap:quts_hero:h5.2.6.3195
Qnap » Quts Hero » Version: h5.2.7.3256

cpe:2.3:o:qnap:quts_hero:h5.2.7.3256
Qnap » Quts Hero » Version: h5.2.7.3297

cpe:2.3:o:qnap:quts_hero:h5.2.7.3297
Qnap » Quts Hero » Version: h5.3.0.3115

cpe:2.3:o:qnap:quts_hero:h5.3.0.3115
Qnap » Quts Hero » Version: h5.3.0.3145

cpe:2.3:o:qnap:quts_hero:h5.3.0.3145
Qnap » Quts Hero » Version: h5.3.0.3192

cpe:2.3:o:qnap:quts_hero:h5.3.0.3192

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-59380

Products

Pricing

Contact Us