Primary

Context

QNAP QuMagie Missing Authorization Vulnerability Allowing Unauthorized Data Access and Actions

Vulnerability

Patched

A missing authorization vulnerability in QNAP QuMagie has been reported, allowing remote attackers to access unauthorized data or perform unauthorized actions. This vulnerability affects versions prior to QuMagie 2.9.0.

Impact

Exploitation of this vulnerability could lead to unauthorized access to data or the ability to perform actions without proper authorization.

Remediation

Users are advised to update to QuMagie version 2.9.0 or later.

Added: Jun 9, 2026, 6:41 AM

Updated: Jun 9, 2026, 6:41 AM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

1.3

exploitability

7.0

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

1.3

exploitability

7.0

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

QNAP QuMagie Missing Authorization Vulnerability Allowing Unauthorized Data Access and Actions

Vulnerability

Impact

Remediation

Affected Products

QNAP QuMagie

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating