CVE-2025-62851NVD

Vulnerability Summary

A path traversal vulnerability has been reported to affect License Center. If a local attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data.

We have already fixed the vulnerability in the following version:
License Center 1.9.56 and later

Severity Level

UNKNOWN

Published Date

Jun 10, 2026

Last Modified

Jun 17, 2026

Exploitation Status

No confirmed exploitation yet

EPSS Score (30-Day)

0.25%Probability

Root Weakness (CWE)

N/A

External References

https://www.qnap.com/en/security-advisory/qsa-26-35