CVE-2025-30268 | QNAP QTS/QuTS hero User Account null pointer dereference (qsa-25-21)

A vulnerability marked as problematic has been reported in QNAP QTS and QuTS hero. This issue affects some unknown processing of the component User Account Handler. The manipulation leads to null pointer dereference.

This vulnerability is documented as CVE-2025-30268. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More