CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-24719

A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to execute arbitrary commands. We have already fixed the vulnerability in the following versions: QTS 5.2.9.3492 build 20260507 and later QuTS hero h5.2.9.3499 build 20260514 and later

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 57.0%

CVSS Severity

CVSS v3 Score 7.2

References

https://www.qnap.com/en/security-advisory/qsa-26-23

Products affected by CVE-2026-24719

Qnap » Qts » Version: 5.2.0.2737

cpe:2.3:o:qnap:qts:5.2.0.2737
Qnap » Qts » Version: 5.2.0.2744

cpe:2.3:o:qnap:qts:5.2.0.2744
Qnap » Qts » Version: 5.2.0.2782

cpe:2.3:o:qnap:qts:5.2.0.2782
Qnap » Qts » Version: 5.2.0.2802

cpe:2.3:o:qnap:qts:5.2.0.2802
Qnap » Qts » Version: 5.2.0.2823

cpe:2.3:o:qnap:qts:5.2.0.2823
Qnap » Qts » Version: 5.2.0.2851

cpe:2.3:o:qnap:qts:5.2.0.2851
Qnap » Qts » Version: 5.2.0.2860

cpe:2.3:o:qnap:qts:5.2.0.2860
Qnap » Qts » Version: 5.2.1.2930

cpe:2.3:o:qnap:qts:5.2.1.2930
Qnap » Qts » Version: 5.2.2.2950

cpe:2.3:o:qnap:qts:5.2.2.2950
Qnap » Qts » Version: 5.2.3.3006

cpe:2.3:o:qnap:qts:5.2.3.3006
Qnap » Qts » Version: 5.2.4.3070

cpe:2.3:o:qnap:qts:5.2.4.3070
Qnap » Qts » Version: 5.2.4.3079

cpe:2.3:o:qnap:qts:5.2.4.3079
Qnap » Qts » Version: 5.2.4.3092

cpe:2.3:o:qnap:qts:5.2.4.3092
Qnap » Qts » Version: 5.2.5.3145

cpe:2.3:o:qnap:qts:5.2.5.3145
Qnap » Qts » Version: 5.2.6.3195

cpe:2.3:o:qnap:qts:5.2.6.3195
Qnap » Qts » Version: 5.2.6.3229

cpe:2.3:o:qnap:qts:5.2.6.3229
Qnap » Qts » Version: 5.2.7.3256

cpe:2.3:o:qnap:qts:5.2.7.3256
Qnap » Qts » Version: 5.2.7.3297

cpe:2.3:o:qnap:qts:5.2.7.3297
Qnap » Qts » Version: 5.2.8.3332

cpe:2.3:o:qnap:qts:5.2.8.3332
Qnap » Qts » Version: 5.2.8.3350

cpe:2.3:o:qnap:qts:5.2.8.3350
Qnap » Qts » Version: 5.2.8.3359

cpe:2.3:o:qnap:qts:5.2.8.3359
Qnap » Qts » Version: 5.2.9.3410

cpe:2.3:o:qnap:qts:5.2.9.3410
Qnap » Qts » Version: 5.2.9.3451

cpe:2.3:o:qnap:qts:5.2.9.3451
Qnap » Quts Hero » Version: h5.0.0

cpe:2.3:o:qnap:quts_hero:h5.0.0
Qnap » Quts Hero » Version: h5.0.0.1772

cpe:2.3:o:qnap:quts_hero:h5.0.0.1772
Qnap » Quts Hero » Version: h5.0.0.1844

cpe:2.3:o:qnap:quts_hero:h5.0.0.1844
Qnap » Quts Hero » Version: h5.0.0.1856

cpe:2.3:o:qnap:quts_hero:h5.0.0.1856
Qnap » Quts Hero » Version: h5.0.0.1892

cpe:2.3:o:qnap:quts_hero:h5.0.0.1892
Qnap » Quts Hero » Version: h5.0.0.1900

cpe:2.3:o:qnap:quts_hero:h5.0.0.1900
Qnap » Quts Hero » Version: h5.0.0.1949

cpe:2.3:o:qnap:quts_hero:h5.0.0.1949
Qnap » Quts Hero » Version: h5.0.0.1986

cpe:2.3:o:qnap:quts_hero:h5.0.0.1986
Qnap » Quts Hero » Version: h5.0.0.2022

cpe:2.3:o:qnap:quts_hero:h5.0.0.2022
Qnap » Quts Hero » Version: h5.0.0.2069

cpe:2.3:o:qnap:quts_hero:h5.0.0.2069
Qnap » Quts Hero » Version: h5.0.0.2120

cpe:2.3:o:qnap:quts_hero:h5.0.0.2120
Qnap » Quts Hero » Version: h5.0.1

cpe:2.3:o:qnap:quts_hero:h5.0.1
Qnap » Quts Hero » Version: h5.0.1.2045

cpe:2.3:o:qnap:quts_hero:h5.0.1.2045
Qnap » Quts Hero » Version: h5.0.1.2192

cpe:2.3:o:qnap:quts_hero:h5.0.1.2192
Qnap » Quts Hero » Version: h5.0.1.2248

cpe:2.3:o:qnap:quts_hero:h5.0.1.2248
Qnap » Quts Hero » Version: h5.0.1.2269

cpe:2.3:o:qnap:quts_hero:h5.0.1.2269
Qnap » Quts Hero » Version: h5.0.1.2277

cpe:2.3:o:qnap:quts_hero:h5.0.1.2277
Qnap » Quts Hero » Version: h5.0.1.2348

cpe:2.3:o:qnap:quts_hero:h5.0.1.2348
Qnap » Quts Hero » Version: h5.0.1.2376

cpe:2.3:o:qnap:quts_hero:h5.0.1.2376
Qnap » Quts Hero » Version: h5.0.1.2515

cpe:2.3:o:qnap:quts_hero:h5.0.1.2515
Qnap » Quts Hero » Version: h5.1.0

cpe:2.3:o:qnap:quts_hero:h5.1.0
Qnap » Quts Hero » Version: h5.1.0.2409

cpe:2.3:o:qnap:quts_hero:h5.1.0.2409
Qnap » Quts Hero » Version: h5.1.0.2424

cpe:2.3:o:qnap:quts_hero:h5.1.0.2424
Qnap » Quts Hero » Version: h5.1.0.2453

cpe:2.3:o:qnap:quts_hero:h5.1.0.2453
Qnap » Quts Hero » Version: h5.1.0.2466

cpe:2.3:o:qnap:quts_hero:h5.1.0.2466
Qnap » Quts Hero » Version: h5.1.1.2488

cpe:2.3:o:qnap:quts_hero:h5.1.1.2488
Qnap » Quts Hero » Version: h5.1.2.2534

cpe:2.3:o:qnap:quts_hero:h5.1.2.2534
Qnap » Quts Hero » Version: h5.1.3.2578

cpe:2.3:o:qnap:quts_hero:h5.1.3.2578
Qnap » Quts Hero » Version: h5.1.4.2596

cpe:2.3:o:qnap:quts_hero:h5.1.4.2596
Qnap » Quts Hero » Version: h5.1.5.2647

cpe:2.3:o:qnap:quts_hero:h5.1.5.2647
Qnap » Quts Hero » Version: h5.1.5.2680

cpe:2.3:o:qnap:quts_hero:h5.1.5.2680
Qnap » Quts Hero » Version: h5.1.6.2734

cpe:2.3:o:qnap:quts_hero:h5.1.6.2734
Qnap » Quts Hero » Version: h5.1.7.2770

cpe:2.3:o:qnap:quts_hero:h5.1.7.2770
Qnap » Quts Hero » Version: h5.1.7.2788

cpe:2.3:o:qnap:quts_hero:h5.1.7.2788
Qnap » Quts Hero » Version: h5.1.7.2794

cpe:2.3:o:qnap:quts_hero:h5.1.7.2794
Qnap » Quts Hero » Version: h5.1.8.2823

cpe:2.3:o:qnap:quts_hero:h5.1.8.2823
Qnap » Quts Hero » Version: h5.2.0.2737

cpe:2.3:o:qnap:quts_hero:h5.2.0.2737
Qnap » Quts Hero » Version: h5.2.0.2782

cpe:2.3:o:qnap:quts_hero:h5.2.0.2782
Qnap » Quts Hero » Version: h5.2.0.2789

cpe:2.3:o:qnap:quts_hero:h5.2.0.2789
Qnap » Quts Hero » Version: h5.2.0.2802

cpe:2.3:o:qnap:quts_hero:h5.2.0.2802
Qnap » Quts Hero » Version: h5.2.0.2823

cpe:2.3:o:qnap:quts_hero:h5.2.0.2823
Qnap » Quts Hero » Version: h5.2.0.2851

cpe:2.3:o:qnap:quts_hero:h5.2.0.2851
Qnap » Quts Hero » Version: h5.2.0.2860

cpe:2.3:o:qnap:quts_hero:h5.2.0.2860
Qnap » Quts Hero » Version: h5.2.1.2929

cpe:2.3:o:qnap:quts_hero:h5.2.1.2929
Qnap » Quts Hero » Version: h5.2.1.2940

cpe:2.3:o:qnap:quts_hero:h5.2.1.2940
Qnap » Quts Hero » Version: h5.2.2.2952

cpe:2.3:o:qnap:quts_hero:h5.2.2.2952
Qnap » Quts Hero » Version: h5.2.3.3006

cpe:2.3:o:qnap:quts_hero:h5.2.3.3006
Qnap » Quts Hero » Version: h5.2.4.3070

cpe:2.3:o:qnap:quts_hero:h5.2.4.3070
Qnap » Quts Hero » Version: h5.2.4.3079

cpe:2.3:o:qnap:quts_hero:h5.2.4.3079
Qnap » Quts Hero » Version: h5.2.5.3138

cpe:2.3:o:qnap:quts_hero:h5.2.5.3138
Qnap » Quts Hero » Version: h5.2.6.3195

cpe:2.3:o:qnap:quts_hero:h5.2.6.3195
Qnap » Quts Hero » Version: h5.2.7.3256

cpe:2.3:o:qnap:quts_hero:h5.2.7.3256
Qnap » Quts Hero » Version: h5.2.7.3297

cpe:2.3:o:qnap:quts_hero:h5.2.7.3297
Qnap » Quts Hero » Version: h5.2.8.3321

cpe:2.3:o:qnap:quts_hero:h5.2.8.3321
Qnap » Quts Hero » Version: h5.2.8.3350

cpe:2.3:o:qnap:quts_hero:h5.2.8.3350
Qnap » Quts Hero » Version: h5.2.8.3359

cpe:2.3:o:qnap:quts_hero:h5.2.8.3359
Qnap » Quts Hero » Version: h5.2.9.3410

cpe:2.3:o:qnap:quts_hero:h5.2.9.3410
Qnap » Quts Hero » Version: h5.2.9.3492

cpe:2.3:o:qnap:quts_hero:h5.2.9.3492

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-24719

Products

Pricing

Contact Us