Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-62846

An SQL injection vulnerability has been reported to affect QHora. If a local attacker gains an administrator account, they can then exploit the vulnerability to execute unauthorized code or commands. We have already fixed the vulnerability in the following version: QuRouter 2.6.2.007 and later
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.8%
CVSS Severity
CVSS v3 Score 6.7
Products affected by CVE-2025-62846
  • Qnap » Qurouter » Version: 2.6.0.239
    cpe:2.3:o:qnap:qurouter:2.6.0.239
  • Qnap » Qurouter » Version: 2.6.0.688
    cpe:2.3:o:qnap:qurouter:2.6.0.688
  • Qnap » Qurouter » Version: 2.6.1.028
    cpe:2.3:o:qnap:qurouter:2.6.1.028


Products
Pricing
Contact Us

Shodan ® - All rights reserved