High severity8.8NVD Advisory· Published Aug 29, 2025· Updated Jun 17, 2026
CVE-2025-29893
CVE-2025-29893
Description
An SQL injection vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to execute unauthorized code or commands.
We have already fixed the vulnerability in the following version: Qsync Central 4.5.0.7 ( 2025/04/23 ) and later
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: >=4.5.0.7
- QNAP Systems Inc./Qsync Centralv5Range: 4.5.x.x
Patches
Vulnerability mechanics
References
1- www.qnap.com/en/security-advisory/qsa-25-22nvdVendor Advisory
News mentions
0No linked articles in our index yet.