MeldSecurity
Press Enter to search
CVE Database & Search →
Sign In Get Started

CVE-2025-9110

🔴 HIGH

An exposure of sensitive system information to an unauthorized control sphere vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit th...

Published
Jan 02, 2026
Last Modified
Jan 06, 2026
Views
11
Bookmarks
0

Description

Request Expert Review

An exposure of sensitive system information to an unauthorized control sphere vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to read application data. We have already fixed the vulnerability in the following versions: QTS 5.2.8.3332 build 20251128 and later QuTS hero h5.2.8.3321 build 20251117 and later QuTS hero h5.3.1.3250 build 20250912 and later

Affected Products (38)

qnap - qts

Version: 5.2.0.2737

qnap - qts

Version: 5.2.0.2744

qnap - qts

Version: 5.2.0.2782

qnap - qts

Version: 5.2.0.2802

qnap - qts

Version: 5.2.0.2823

qnap - qts

Version: 5.2.0.2851

qnap - qts

Version: 5.2.0.2860

qnap - qts

Version: 5.2.1.2930

qnap - qts

Version: 5.2.2.2950

qnap - qts

Version: 5.2.3.3006

qnap - qts

Version: 5.2.4.3070

qnap - qts

Version: 5.2.4.3079

qnap - qts

Version: 5.2.4.3092

qnap - qts

Version: 5.2.5.3145

qnap - qts

Version: 5.2.6.3195

qnap - qts

Version: 5.2.6.3229

qnap - qts

Version: 5.2.7.3256

qnap - qts

Version: 5.2.7.3297

qnap - quts_hero

Version: h5.2.0.2737

qnap - quts_hero

Version: h5.2.0.2782

qnap - quts_hero

Version: h5.2.0.2789

qnap - quts_hero

Version: h5.2.0.2802

qnap - quts_hero

Version: h5.2.0.2823

qnap - quts_hero

Version: h5.2.0.2851

qnap - quts_hero

Version: h5.2.0.2860

qnap - quts_hero

Version: h5.2.1.2929

qnap - quts_hero

Version: h5.2.1.2940

qnap - quts_hero

Version: h5.2.2.2952

qnap - quts_hero

Version: h5.2.3.3006

qnap - quts_hero

Version: h5.2.4.3070

qnap - quts_hero

Version: h5.2.4.3079

qnap - quts_hero

Version: h5.2.5.3138

qnap - quts_hero

Version: h5.2.6.3195

qnap - quts_hero

Version: h5.2.7.3256

qnap - quts_hero

Version: h5.2.7.3297

qnap - quts_hero

Version: h5.3.0.3115

qnap - quts_hero

Version: h5.3.0.3145

qnap - quts_hero

Version: h5.3.0.3192

CVSS Scores

CVSS 3.1 7.5
7.5
HIGH
CVSS 2.0 7.5

References

www.qnap.com

Additional Information

Source
security@qnapsecurity.com.tw
State
Analyzed

Related CVEs

CVE-2025-67847

HIGH

A flaw was found in Moodle. An attacker with access to the restore interface could trigger server-side execution of arbitrary code. This is due to ins...

Score: 8.8

CVE-2025-3839

HIGH

A flaw was found in Epiphany, a tool that allows websites to open external URL handler applications with minimal user interaction. This design can be...

Score: 8.0

CVE-2025-15522

MEDIUM

The Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scrip...

Score: 6.4

CVE-2026-0796

HIGH

ALGO 8180 IP Audio Alerter Web UI Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitra...

Score: 7.2

CVE-2026-0795

HIGH

ALGO 8180 IP Audio Alerter Web UI Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitra...

Score: 7.2

CVE-2026-0794

HIGH

ALGO 8180 IP Audio Alerter SIP Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary cod...

Score: 8.1

Share CVE-2025-9110

Share on Social Media

Copy Link

Embed Code

Request Expert Analysis

Request a professional security analysis for CVE-2025-9110 from our verified experts.

Credits System

Use your credits to get expert analysis from verified security professionals. Purchase more credits anytime!

Add 3 credits for accelerated delivery

Base Cost: 8 credits
Priority Upgrade: + credits
SLA Acceleration: +3 credits
Total Cost:
Your Balance:

Insufficient Credits

You need more credits to submit this request.

Buy Credits

Report Analysis