CVE-2025-58470
EUVD-2025-20692211.02.2026, 13:15
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| qnap | qsync_central | 5.0.0.0 ≤ 𝑥 < 5.0.0.4 |
𝑥
= Vulnerable software versions