CVE-2025-52428 | QNAP QTS up to 5.2.4.3079 Build 20250321 null pointer dereference (qsa-25-36)

October 3, 2025 Yanac

A vulnerability was found in QNAP QTS. It has been rated as problematic. This issue affects some unknown processing. This manipulation causes null pointer dereference.

This vulnerability is registered as CVE-2025-52428. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More

CVE-2025-52432 | QNAP QTS/QuTS hero null pointer dereference (qsa-25-36)
CVE-2025-48730 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 format string (qsa-25-36)