CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-59385

An authentication bypass by spoofing vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to access resources which are not otherwise accessible without proper authentication. We have already fixed the vulnerability in the following versions: QTS 5.2.7.3297 build 20251024 and later QuTS hero h5.2.7.3297 build 20251024 and later QuTS hero h5.3.1.3292 build 20251024 and later

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.8%

CVSS Severity

CVSS v3 Score 9.8

References

https://www.qnap.com/en/security-advisory/qsa-25-45

Products affected by CVE-2025-59385

Qnap » Qts » Version: 5.2.0.2737

cpe:2.3:o:qnap:qts:5.2.0.2737
Qnap » Qts » Version: 5.2.0.2744

cpe:2.3:o:qnap:qts:5.2.0.2744
Qnap » Qts » Version: 5.2.0.2782

cpe:2.3:o:qnap:qts:5.2.0.2782
Qnap » Qts » Version: 5.2.0.2802

cpe:2.3:o:qnap:qts:5.2.0.2802
Qnap » Qts » Version: 5.2.0.2823

cpe:2.3:o:qnap:qts:5.2.0.2823
Qnap » Qts » Version: 5.2.0.2851

cpe:2.3:o:qnap:qts:5.2.0.2851
Qnap » Qts » Version: 5.2.0.2860

cpe:2.3:o:qnap:qts:5.2.0.2860
Qnap » Qts » Version: 5.2.1.2930

cpe:2.3:o:qnap:qts:5.2.1.2930
Qnap » Qts » Version: 5.2.2.2950

cpe:2.3:o:qnap:qts:5.2.2.2950
Qnap » Qts » Version: 5.2.3.3006

cpe:2.3:o:qnap:qts:5.2.3.3006
Qnap » Qts » Version: 5.2.4.3070

cpe:2.3:o:qnap:qts:5.2.4.3070
Qnap » Qts » Version: 5.2.4.3079

cpe:2.3:o:qnap:qts:5.2.4.3079
Qnap » Qts » Version: 5.2.4.3092

cpe:2.3:o:qnap:qts:5.2.4.3092
Qnap » Qts » Version: 5.2.5.3145

cpe:2.3:o:qnap:qts:5.2.5.3145
Qnap » Qts » Version: 5.2.6.3195

cpe:2.3:o:qnap:qts:5.2.6.3195
Qnap » Qts » Version: 5.2.6.3229

cpe:2.3:o:qnap:qts:5.2.6.3229
Qnap » Qts » Version: 5.2.7.3256

cpe:2.3:o:qnap:qts:5.2.7.3256
Qnap » Quts Hero » Version: h5.2.0.2737

cpe:2.3:o:qnap:quts_hero:h5.2.0.2737
Qnap » Quts Hero » Version: h5.2.0.2782

cpe:2.3:o:qnap:quts_hero:h5.2.0.2782
Qnap » Quts Hero » Version: h5.2.0.2789

cpe:2.3:o:qnap:quts_hero:h5.2.0.2789
Qnap » Quts Hero » Version: h5.2.0.2802

cpe:2.3:o:qnap:quts_hero:h5.2.0.2802
Qnap » Quts Hero » Version: h5.2.0.2823

cpe:2.3:o:qnap:quts_hero:h5.2.0.2823
Qnap » Quts Hero » Version: h5.2.0.2851

cpe:2.3:o:qnap:quts_hero:h5.2.0.2851
Qnap » Quts Hero » Version: h5.2.0.2860

cpe:2.3:o:qnap:quts_hero:h5.2.0.2860
Qnap » Quts Hero » Version: h5.2.1.2929

cpe:2.3:o:qnap:quts_hero:h5.2.1.2929
Qnap » Quts Hero » Version: h5.2.1.2940

cpe:2.3:o:qnap:quts_hero:h5.2.1.2940
Qnap » Quts Hero » Version: h5.2.2.2952

cpe:2.3:o:qnap:quts_hero:h5.2.2.2952
Qnap » Quts Hero » Version: h5.2.3.3006

cpe:2.3:o:qnap:quts_hero:h5.2.3.3006
Qnap » Quts Hero » Version: h5.2.4.3070

cpe:2.3:o:qnap:quts_hero:h5.2.4.3070
Qnap » Quts Hero » Version: h5.2.4.3079

cpe:2.3:o:qnap:quts_hero:h5.2.4.3079
Qnap » Quts Hero » Version: h5.2.5.3138

cpe:2.3:o:qnap:quts_hero:h5.2.5.3138
Qnap » Quts Hero » Version: h5.2.6.3195

cpe:2.3:o:qnap:quts_hero:h5.2.6.3195
Qnap » Quts Hero » Version: h5.2.7.3256

cpe:2.3:o:qnap:quts_hero:h5.2.7.3256
Qnap » Quts Hero » Version: h5.3.0.3115

cpe:2.3:o:qnap:quts_hero:h5.3.0.3115
Qnap » Quts Hero » Version: h5.3.0.3145

cpe:2.3:o:qnap:quts_hero:h5.3.0.3145
Qnap » Quts Hero » Version: h5.3.0.3192

cpe:2.3:o:qnap:quts_hero:h5.3.0.3192
Qnap » Quts Hero » Version: h5.3.1.3250

cpe:2.3:o:qnap:quts_hero:h5.3.1.3250

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-59385

Products

Pricing

Contact Us