QSearchQSearch

CVE-2025-66280

An integer overflow or wraparound vulnerability has been reported to affect several QNAP operating system versions

Published: 2026-06-10 · Last updated: 2026-06-10

Severity and scoring

CWE
CWE-121, CWE-190

Description

An integer overflow or wraparound vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the following versions: QTS 5.2.9.3410 build 20260214 and later QuTS hero h5.2.9.3410 build 20260214 and later QuTS hero h5.3.4.3500 build 20260520 and later QuTS hero h6.0.0.3397 build 20260206 and later

Source: NVD

References

Related CVEs

Same CWE

  • CVE-2026-26241 A buffer overflow vulnerability has been reported to affect File Station 5
  • CVE-2026-26240 A buffer overflow vulnerability has been reported to affect File Station 5
  • CVE-2026-26239 A buffer overflow vulnerability has been reported to affect File Station 5
  • CVE-2026-44634 SimpleBLE is a cross-platform library and bindings for Bluetooth Low Energy (BLE)
  • CVE-2026-34711 CAI Content Credentials versions c2pa-web@0.7.1, c2pa-v0.80.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability (7.5 HIGH)