CVE-2025-62851

MEDIUM(4.4)

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Risk Signal Score16/100 — NIEDRIG

CVSS 4.4 — Mittel

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

4.4

Technische Schwere

Beschreibung

A path traversal vulnerability has been reported to affect License Center. If a local attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: License Center 1.9.56 and later

Referenzen

https://www.qnap.com/en/security-advisory/qsa-26-28