Primary

Context

QNAP Operating Systems Buffer Overflow Vulnerability Allowing Memory Modification or Process Crashes

Vulnerability

Patched

A buffer overflow vulnerability has been identified in multiple QNAP operating system versions. This vulnerability allows remote attackers with administrator access to exploit the issue, potentially leading to unauthorized memory modification or process crashes.

Impact

Exploitation of this vulnerability could result in unauthorized memory modification or process crashes on the affected system.

Remediation

Users can upgrade to QTS 5.2.9.3410 build 20260214 or later, QuTS hero h5.2.9.3410 build 20260214 or later, QuTS hero h5.3.4.3500 build 20260520 or later, or QuTS hero h6.0.0.3397 build 20260206 or later to address this vulnerability.

Added: Jun 9, 2026, 8:34 AM

Updated: Jun 9, 2026, 8:34 AM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

7.5

exploitability

4.4

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

7.5

exploitability

4.4

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

QNAP Operating Systems Buffer Overflow Vulnerability Allowing Memory Modification or Process Crashes

Vulnerability

Impact

Remediation

Affected Products

QNAP QTS

QNAP QuTS hero

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating