CVE-2025-52858 | QNAP QTS/QuTS hero prior 5.2.6.3195 Build 20250715 null pointer dereference (qsa-25-36)

A vulnerability, which was classified as problematic, has been found in QNAP QTS and QuTS hero. Affected by this issue is some unknown functionality. Performing manipulation results in null pointer dereference.

This vulnerability was named CVE-2025-52858. The attack may be initiated remotely. There is no available exploit.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More