CVE-2025-47211 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 path traversal (qsa-25-36)

October 3, 2025 Yanac

A vulnerability labeled as critical has been found in QNAP QTS and QuTS hero. This issue affects some unknown processing. Such manipulation leads to path traversal.

This vulnerability is traded as CVE-2025-47211. The attack may be launched remotely. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More

CVE-2025-47212 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 os command injection (qsa-25-36)
CVE-2025-61592 | Cursor up to 1.7 /.cursor/cli.json inclusion of functionality from untrusted control sphere (GHSA-v64q-396f-7m79)