threat
engine
.sh
Back
·
··:··
Home
/
Product
/
qnap qurouter
Product
qnap qurouter
12 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-62846
all versions
An SQL injection vulnerability has been reported to affect QHora. If a local attacker gains an administrator account, they can the
6.7
MEDIUM
CVE-2025-62845
all versions
An improper neutralization of escape, meta, or control sequences vulnerability has been reported to affect QHora. If a local attac
6.7
MEDIUM
CVE-2025-62844
all versions
A weak authentication vulnerability has been reported to affect QHora. If an attacker gains local network access, they can then ex
5.5
MEDIUM
CVE-2025-62843
all versions
An improper restriction of communication channel to intended endpoints vulnerability has been reported to affect QHora. If an atta
6.8
MEDIUM
CVE-2025-29887
all versions
A command injection vulnerability has been reported to affect QuRouter 2.5.1. If a remote attacker gains an administrator account,
7.2
HIGH
CVE-2024-13088
all versions
An improper authentication vulnerability has been reported to affect QHora. If an attacker gains local network access, they can th
7.8
HIGH
CVE-2024-13087
all versions
A command injection vulnerability has been reported to affect QHora. If an attacker gains local network access who have also gaine
6.7
MEDIUM
CVE-2024-53700
all versions
A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers
7.2
HIGH
CVE-2024-50390
all versions
A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers
9.8
CRITICAL
CVE-2024-50389
all versions
A SQL injection vulnerability has been reported to affect QuRouter. If exploited, the vulnerability could allow remote attackers t
9.8
CRITICAL
CVE-2024-48861
all versions
An OS command injection vulnerability has been reported to affect several product versions. If exploited, the vulnerability could
7.8
HIGH
CVE-2024-48860
all versions
An OS command injection vulnerability has been reported to affect several product versions. If exploited, the vulnerability could
9.8
CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin