CVE-2025-62844

Medienbericht

EPSS 0.03%
Veröffentlicht 20.03.2026 16:21:56
Zuletzt bearbeitet 14.04.2026 14:24:28
Quelle security@qnapsecurity.com.tw
CVE-Watchlists
Login
Unerledigt
Login

QuRouter

A weak authentication vulnerability has been reported to affect QHora. If an attacker gains local network access, they can then exploit the vulnerability to gain sensitive information.

We have already fixed the vulnerability in the following version:
QuRouter 2.6.2.007 and later

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

NVD 3 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Qnap ≫ Qurouter Version2.6.0.239 Updatebuild_20250625

Qnap ≫ Qurouter Version2.6.0.688 Updatebuild_20250818

Qnap ≫ Qurouter Version2.6.1.028 Updatebuild_20251001

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.085

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
security@qnapsecurity.com.tw	4	0	0	CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-1390 Weak Authentication

The product uses an authentication mechanism to restrict access to specific users or identities, but the mechanism does not sufficiently prove that the claimed identity is correct.

https://thehackernews.com/2026/03/weekly-recap-telecom-sleeper-cells-llm.html

Media Report

https://www.qnap.com/en/security-advisory/qsa-26-12

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-62844

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-62844

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-62844

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-62844