SecurityWeek

QNAP Patches Four Vulnerabilities Exploited at Pwn2Own

QNAP has released patches for more vulnerabilities chained at the Pwn2Own Ireland 2025 contest to gain root access.
Bleeping Computer

QNAP patches second zero-day exploited at Pwn2Own to get root

QNAP has released security patches for a second zero-day bug exploited by security researchers during last week's Pwn2Own hacking contest. This critical SQL injection (SQLi) vulnerability, tracked as ...
HotHardware

Your QNAP NAS Device Is Probably Vulnerable To A Critical Security Flaw, Patch ASAP

Another day another vulnerability. This time we're dealing with network-attached storage hardware provider QNAP. Interestingly though, this particular vulnerability isn't entirely QNAP's fault. It's ...
Bleeping Computer

QNAP fixes seven NAS zero-day flaws exploited at Pwn2Own

QNAP has fixed seven zero-day vulnerabilities that security researchers exploited to hack QNAP network-attached storage (NAS) devices during the Pwn2Own Ireland 2025 competition. The flaws impact QNAP ...
TechSpot

QNAP's NAS devices affected by a new critical security issue, patches are available

A hot potato: QNAP is once again warning users about a security vulnerability impacting its network-attached storage (NAS) devices. The critical flaw could make remote attacks easier, hence owners are ...
CSOonline

QNAP fixes critical security holes in its networking solutions

The critical flaws impacting QNAP’s NAS and QuRouter solutions could allow remote attackers to execute arbitrary commands on compromised systems. Network and software solutions provider QNAP — whose ...
Ars Technica

QNAP vulnerability CVSS 9.8 (9 March 2024)

This QNAP security advisory annoys me a lot. The issue has been fixed in a pretty old patch dated November / December depending on exact product so malicious third parties could have reverse ...