CVE-2025-30267 | QNAP QTS/QuTS hero User Account null pointer dereference (qsa-25-21)

A vulnerability labeled as problematic has been found in QNAP QTS and QuTS hero. This vulnerability affects unknown code of the component User Account Handler. Executing manipulation can lead to null pointer dereference.

This vulnerability is registered as CVE-2025-30267. It is possible to launch the attack remotely. No exploit is available.

The affected component should be upgraded.VulDB Recent EntriesRead More