CVE-2025-29892
- EPSS 0.07%
- Veröffentlicht 06.06.2025 15:53:58
- Zuletzt bearbeitet 20.09.2025 03:34:14
An SQL injection vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to execute unauthorized code or commands. We have already fixed the vulnerability in t...
CVE-2025-22482
- EPSS 0.04%
- Veröffentlicht 06.06.2025 15:53:28
- Zuletzt bearbeitet 20.09.2025 03:33:58
A use of externally-controlled format string vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to obtain secret data or modify memory. We have already fi...
CVE-2024-53694
- EPSS 0.02%
- Veröffentlicht 07.03.2025 17:15:20
- Zuletzt bearbeitet 07.03.2025 17:15:20
A time-of-check time-of-use (TOCTOU) race condition vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow local attackers who have gained user access to gain access to otherwise unauthorized r...
CVE-2024-50404
- EPSS 20.34%
- Veröffentlicht 06.12.2024 17:15:10
- Zuletzt bearbeitet 06.12.2024 17:15:10
A link following vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to traverse the file system to unintended locations. We have already fixed the vulnera...
CVE-2017-13070
- EPSS 0.45%
- Veröffentlicht 11.12.2017 16:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
A DLL Hijacking vulnerability in QNAP Qsync for Windows (exe) version 4.2.2.0724 and earlier could allow remote attackers to execute arbitrary code on Windows machines.