CVE-2025-62844

Medium CVSS: 4.0

A weak authentication vulnerability has been reported to affect QHora. If an attacker gains local network access, they can then exploit the vulnerability to gain sensitive information.

We have already fixed the vulnerability in the following version:
QuRouter 2.6.2.007 and later

Vendor

Product

CWE

CWE-1390

Yayın Tarihi

2026-03-20 17:16:42

Güncelleme

2026-03-24 15:54:09

Source Identifier

security@qnapsecurity.com.tw

KEV Date Added

Kategoriler

CWE-1390 MEDIUM 2026

Referanslar

https://www.qnap.com/en/security-advisory/qsa-26-12