Qsync Central
Approved changes feed: RSS · Atom
cpe:2.3:a:qnap_systems_inc.:qsync_central:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Qnap Systems Inc. (1f66ac1e-0889-51bf-b27f-24c7175e5920) |
|---|---|
| Product | Qsync Central (02c78fd3-97fc-56cd-9b74-beaf143af656) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-68406 |
vulnerable | 2026-06-03 15:11:03.171009 |
Qsync Central
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:15:30.860Z
Updated: 2026-02-11T16:43:00.799Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-58472 |
vulnerable | 2026-06-03 15:06:21.760543 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:16:26.763Z
Updated: 2026-02-11T15:48:46.190Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-58471 |
vulnerable | 2026-06-03 15:06:21.760120 |
Qsync Central
An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains an administrator account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.
We have already fixed the vulnerability in the following version:
Qsync Central 5.2.0.1 ( 2025/12/21 ) and later
Published: 2026-02-11T12:16:32.407Z
Updated: 2026-02-11T15:47:06.495Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-58470 |
vulnerable | 2026-06-03 15:06:21.759767 |
Qsync Central
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:16:38.831Z
Updated: 2026-02-11T16:52:58.831Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-58467 |
vulnerable | 2026-06-03 15:06:21.756315 |
Qsync Central
A relative path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:16:46.830Z
Updated: 2026-02-11T16:54:19.711Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-57712 |
vulnerable | 2026-06-03 15:04:59.900567 |
Qsync Central
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.3 ( 2025/08/28 ) and later
Published: 2025-11-07T15:11:14.888Z
Updated: 2025-11-07T16:11:21.520Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-57711 |
vulnerable | 2026-06-03 15:04:59.900192 |
Qsync Central
An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains an administrator account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:17:11.126Z
Updated: 2026-02-11T16:56:55.874Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-57710 |
vulnerable | 2026-06-03 15:04:59.899808 |
Qsync Central
An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains an administrator account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:17:16.943Z
Updated: 2026-02-11T15:43:57.824Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-57709 |
vulnerable | 2026-06-03 15:04:59.899414 |
Qsync Central
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:17:22.554Z
Updated: 2026-02-11T15:43:51.003Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-57708 |
vulnerable | 2026-06-03 15:04:59.898889 |
Qsync Central
An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:17:27.631Z
Updated: 2026-02-11T15:43:46.025Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-54170 |
vulnerable | 2026-06-03 15:04:55.157922 |
Qsync Central
An out-of-bounds read vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to obtain secret data.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:17:38.705Z
Updated: 2026-02-11T15:43:33.774Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-54153 |
vulnerable | 2026-06-03 15:04:55.072053 |
Qsync Central
An SQL injection vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to execute unauthorized code or commands.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.2 ( 2025/07/31 ) and later
Published: 2025-10-03T18:14:56.019Z
Updated: 2025-10-03T19:09:37.246Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-54152 |
vulnerable | 2026-06-03 15:04:55.071643 |
Qsync Central
A use of out-of-range pointer offset vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read sensitive portions of memory.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:18:16.611Z
Updated: 2026-02-11T15:43:24.212Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-54151 |
vulnerable | 2026-06-03 15:04:55.071172 |
Qsync Central
An uncontrolled resource consumption vulnerability has been reported to affect Qsync Central. If a local attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:18:23.495Z
Updated: 2026-02-11T15:43:18.985Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-54150 |
vulnerable | 2026-06-03 15:04:55.064269 |
Qsync Central
An uncontrolled resource consumption vulnerability has been reported to affect Qsync Central. If a local attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:18:29.651Z
Updated: 2026-02-11T16:57:37.867Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-54149 |
vulnerable | 2026-06-03 15:04:55.063928 |
Qsync Central
An uncontrolled resource consumption vulnerability has been reported to affect Qsync Central. If a local attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:18:34.659Z
Updated: 2026-02-11T16:58:13.445Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-54148 |
vulnerable | 2026-06-03 15:04:55.063579 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:18:40.809Z
Updated: 2026-02-11T16:58:32.698Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-54147 |
vulnerable | 2026-06-03 15:04:55.063238 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:18:45.923Z
Updated: 2026-02-11T16:58:56.313Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-54146 |
vulnerable | 2026-06-03 15:04:55.061959 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:18:50.129Z
Updated: 2026-02-11T16:59:15.991Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-53598 |
vulnerable | 2026-06-03 15:03:54.363886 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:18:54.742Z
Updated: 2026-02-11T16:59:33.191Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-53595 |
vulnerable | 2026-06-03 15:03:54.362132 |
Qsync Central
An SQL injection vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to execute unauthorized code or commands.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.2 ( 2025/07/31 ) and later
Published: 2025-10-03T18:14:49.578Z
Updated: 2025-10-03T19:09:43.678Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-52870 |
vulnerable | 2026-06-03 15:03:52.627165 |
Qsync Central
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:18:59.439Z
Updated: 2026-02-11T16:59:50.333Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-52869 |
vulnerable | 2026-06-03 15:03:52.626846 |
Qsync Central
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:19:05.466Z
Updated: 2026-02-11T14:53:55.316Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-52868 |
vulnerable | 2026-06-03 15:03:52.626511 |
Qsync Central
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:19:11.316Z
Updated: 2026-02-11T14:52:31.385Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-52867 |
vulnerable | 2026-06-03 15:03:52.625279 |
Qsync Central
An uncontrolled resource consumption vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.2 ( 2025/07/31 ) and later
Published: 2025-10-03T18:14:29.913Z
Updated: 2025-10-03T19:10:18.252Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-48724 |
vulnerable | 2026-06-03 15:01:35.187960 |
Qsync Central
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:19:22.172Z
Updated: 2026-02-11T14:43:05.197Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-48723 |
vulnerable | 2026-06-03 15:01:35.187581 |
Qsync Central
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:19:27.742Z
Updated: 2026-02-11T14:42:21.436Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-48722 |
vulnerable | 2026-06-03 15:01:35.187263 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:19:33.423Z
Updated: 2026-02-11T14:38:06.207Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47210 |
vulnerable | 2026-06-03 15:01:28.678430 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.2 ( 2025/07/31 ) and later
Published: 2025-10-03T18:09:58.401Z
Updated: 2025-10-03T18:52:15.445Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-47209 |
vulnerable | 2026-06-03 15:01:28.677262 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:19:38.978Z
Updated: 2026-02-11T14:34:41.815Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44014 |
vulnerable | 2026-06-03 15:01:18.489067 |
Qsync Central
An out-of-bounds write vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify or corrupt memory.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.1 ( 2025/07/09 ) and later
Published: 2025-10-03T18:09:51.496Z
Updated: 2025-10-03T18:51:29.451Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44012 |
vulnerable | 2026-06-03 15:01:18.465126 |
Qsync Central
An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.2 ( 2025/07/31 ) and later
Published: 2025-10-03T18:09:44.519Z
Updated: 2025-10-03T18:50:13.990Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44011 |
vulnerable | 2026-06-03 15:01:18.464455 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.1 ( 2025/07/09 ) and later
Published: 2025-10-03T18:09:38.293Z
Updated: 2025-10-03T18:49:35.826Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44010 |
vulnerable | 2026-06-03 15:01:18.464053 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.1 ( 2025/07/09 ) and later
Published: 2025-10-03T18:09:26.964Z
Updated: 2025-10-03T18:43:01.411Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44009 |
vulnerable | 2026-06-03 15:01:18.463597 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.1 ( 2025/07/09 ) and later
Published: 2025-10-03T18:09:19.789Z
Updated: 2025-10-03T18:42:16.739Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44008 |
vulnerable | 2026-06-03 15:01:18.463142 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.1 ( 2025/07/09 ) and later
Published: 2025-10-03T18:09:12.168Z
Updated: 2025-10-03T18:41:25.382Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44007 |
vulnerable | 2026-06-03 15:01:18.462546 |
Qsync Central
An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.1 ( 2025/07/09 ) and later
Published: 2025-10-03T18:09:05.407Z
Updated: 2025-10-03T18:40:35.142Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44006 |
vulnerable | 2026-06-03 15:01:18.461338 |
Qsync Central
An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.1 ( 2025/07/09 ) and later
Published: 2025-10-03T18:08:57.826Z
Updated: 2025-10-03T18:39:44.328Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-33040 |
vulnerable | 2026-06-03 15:00:42.734010 |
Qsync Central
An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.1 ( 2025/07/09 ) and later
Published: 2025-10-03T18:08:50.363Z
Updated: 2025-10-03T18:39:08.950Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-33039 |
vulnerable | 2026-06-03 15:00:42.733630 |
Qsync Central
An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.1 ( 2025/07/09 ) and later
Published: 2025-10-03T18:08:40.111Z
Updated: 2025-10-03T18:38:24.565Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-33038 |
vulnerable | 2026-06-03 15:00:42.733233 |
Qsync Central
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
Published: 2025-08-29T17:17:11.149Z
Updated: 2025-08-29T18:21:47.298Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-33037 |
vulnerable | 2026-06-03 15:00:42.732733 |
Qsync Central
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
Published: 2025-08-29T17:17:05.931Z
Updated: 2025-08-29T18:21:53.165Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-33036 |
vulnerable | 2026-06-03 15:00:42.732350 |
Qsync Central
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
Published: 2025-08-29T17:17:00.802Z
Updated: 2025-08-29T18:21:59.165Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-33034 |
vulnerable | 2026-06-03 15:00:42.731301 |
Qsync Central
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.1 ( 2025/07/09 ) and later
Published: 2025-10-03T18:08:32.134Z
Updated: 2025-10-03T18:36:27.297Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-33033 |
vulnerable | 2026-06-03 15:00:42.730065 |
Qsync Central
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
Published: 2025-08-29T17:16:56.093Z
Updated: 2025-08-29T18:22:05.936Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30278 |
vulnerable | 2026-06-03 15:00:27.644378 |
Qsync Central
An improper certificate validation vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to compromise the security of the system.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
Published: 2025-08-29T17:16:46.575Z
Updated: 2025-08-29T18:22:18.446Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30277 |
vulnerable | 2026-06-03 15:00:27.644000 |
Qsync Central
An improper certificate validation vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to compromise the security of the system.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
Published: 2025-08-29T17:16:41.798Z
Updated: 2025-08-29T18:22:25.665Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30276 |
vulnerable | 2026-06-03 15:00:27.643715 |
Qsync Central
An out-of-bounds write vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify or corrupt memory.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:19:51.275Z
Updated: 2026-02-11T14:28:30.435Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30275 |
vulnerable | 2026-06-03 15:00:27.643408 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
Published: 2025-08-29T17:16:36.940Z
Updated: 2025-08-29T18:22:31.969Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30269 |
vulnerable | 2026-06-03 15:00:27.633228 |
Qsync Central
A use of externally-controlled format string vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to obtain secret data or modify memory.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:19:57.092Z
Updated: 2026-02-11T14:27:09.111Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30266 |
vulnerable | 2026-06-03 15:00:27.628817 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.4 ( 2026/01/20 ) and later
Published: 2026-02-11T12:20:03.281Z
Updated: 2026-02-11T14:27:44.205Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30263 |
vulnerable | 2026-06-03 15:00:27.607839 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.0 ( 2025/06/13 ) and later
Published: 2025-08-29T17:15:49.528Z
Updated: 2025-08-29T18:23:35.381Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30262 |
vulnerable | 2026-06-03 15:00:27.607434 |
Qsync Central
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.0 ( 2025/06/13 ) and later
Published: 2025-08-29T17:15:44.821Z
Updated: 2025-08-29T18:23:41.588Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30261 |
vulnerable | 2026-06-03 15:00:27.605614 |
Qsync Central
An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.
We have already fixed the vulnerability in the following version:
Qsync Central 5.0.0.0 ( 2025/06/13 ) and later
Published: 2025-08-29T17:15:40.052Z
Updated: 2025-08-29T18:23:47.808Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-30260 |
vulnerable | 2026-06-03 15:00:27.604480 |
Qsync Central
An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
Published: 2025-08-29T17:15:33.267Z
Updated: 2025-08-29T18:23:55.771Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-29898 |
vulnerable | 2026-06-03 15:00:14.849924 |
Qsync Central
An uncontrolled resource consumption vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
Published: 2025-08-29T17:15:12.723Z
Updated: 2025-08-29T18:24:16.199Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-29894 |
vulnerable | 2026-06-03 15:00:14.849507 |
Qsync Central
An SQL injection vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to execute unauthorized code or commands.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
Published: 2025-08-29T17:15:06.045Z
Updated: 2025-08-29T18:24:21.804Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-29893 |
vulnerable | 2026-06-03 15:00:14.849075 |
Qsync Central
An SQL injection vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to execute unauthorized code or commands.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
Published: 2025-08-29T17:14:59.151Z
Updated: 2025-08-29T18:24:27.609Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-29892 |
vulnerable | 2026-06-03 15:00:14.847700 |
Qsync Central
An SQL injection vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to execute unauthorized code or commands.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.6 ( 2025/03/20 ) and later
Published: 2025-06-06T15:53:58.034Z
Updated: 2025-06-06T16:35:18.667Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-22482 |
vulnerable | 2026-06-03 14:59:40.082793 |
Qsync Central
A use of externally-controlled format string vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to obtain secret data or modify memory.
We have already fixed the vulnerability in the following version:
Qsync Central 4.5.0.6 ( 2025/03/20 ) and later
Published: 2025-06-06T15:53:28.822Z
Updated: 2025-06-06T16:35:24.146Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-50404 |
vulnerable | 2026-06-03 14:57:24.202404 |
Qsync Central
A link following vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to traverse the file system to unintended locations.
We have already fixed the vulnerability in the following versions:
Qsync Central 4.4.0.16_20240819 ( 2024/08/19 ) and later
Published: 2024-12-06T16:35:52.266Z
Updated: 2024-12-06T19:28:37.668Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-47564 |
vulnerable | 2026-06-03 14:53:17.662428 |
Qsync Central
HIGH (8)
An incorrect permission assignment for critical resource vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow authenticated users to read or modify the resource via a network.
We have already fixed the vulnerability in the following versions:
Qsync Central 4.4.0.15 ( 2024/01/04 ) and later
Qsync Central 4.3.0.11 ( 2024/01/11 ) and later
Published: 2024-02-02T16:05:54.662Z
Updated: 2024-08-29T19:48:47.318Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.