A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to modify memory or crash processes.
We have already fixed the vulnerability in the following versions:
QTS 5.2.4.3079 build 20250321 and later
QuTS hero h5.2.4.3079 build 20250321 and later
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.qnap.com/en/security-advisory/qsa-25-12 |
![]() ![]() |
History
Fri, 06 Jun 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 06 Jun 2025 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to modify memory or crash processes. We have already fixed the vulnerability in the following versions: QTS 5.2.4.3079 build 20250321 and later QuTS hero h5.2.4.3079 build 20250321 and later | |
Title | QTS, QuTS hero | |
Weaknesses | CWE-120 CWE-122 |
|
References |
| |
Metrics |
cvssV4_0
|

Status: PUBLISHED
Assigner: qnap
Published: 2025-06-06T15:53:13.936Z
Updated: 2025-06-06T16:35:40.607Z
Reserved: 2024-12-31T09:31:29.719Z
Link: CVE-2024-56805

Updated: 2025-06-06T16:19:30.898Z

Status : Awaiting Analysis
Published: 2025-06-06T16:15:23.660
Modified: 2025-06-09T12:15:47.880
Link: CVE-2024-56805

No data.