← back
CVE-2025-62844

QuRouter

CVSS 4 MEDIUMEPSS 0.2%CWE-1390
A weak authentication vulnerability has been reported to affect QHora. If an attacker gains local network access, they can then exploit the vulnerability to gain sensitive information. We have already fixed the vulnerability in the following version: QuRouter 2.6.2.007 and later
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
Affected products
QNAP Systems Inc. · QuRouter

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.qnap.com/en/security-advisory/qsa-26-12