High severity8.8NVD Advisory· Published Jun 6, 2025· Updated Jun 17, 2026
CVE-2025-29892
CVE-2025-29892
Description
An SQL injection vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to execute unauthorized code or commands.
We have already fixed the vulnerability in the following version: Qsync Central 4.5.0.6 ( 2025/03/20 ) and later
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: >=4.5.0.6
- QNAP Systems Inc./Qsync Centralv5Range: 4.5.x.x
Patches
Vulnerability mechanics
References
1- www.qnap.com/en/security-advisory/qsa-25-10nvdVendor Advisory
News mentions
0No linked articles in our index yet.