VYPR
High severity8.8NVD Advisory· Published Jun 6, 2025· Updated Jun 17, 2026

CVE-2025-29892

CVE-2025-29892

Description

An SQL injection vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to execute unauthorized code or commands.

We have already fixed the vulnerability in the following version: Qsync Central 4.5.0.6 ( 2025/03/20 ) and later

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: >=4.5.0.6
  • QNAP Systems Inc./Qsync Centralv5
    Range: 4.5.x.x

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.