← All advisories

Medium severityNVD Advisory· Published Jun 10, 2026

CVE-2025-59382

CVE-2025-59382

Description

QTS, QuTS hero, QuTScloud are not affected.

We have already fixed the vulnerability in the following version:

Affected products

3

Qnap/Qtsllm-fuzzy
Qnap/QuTS herollm-fuzzy
Qnap/QuTScloudllm-fuzzy

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

www.qnap.com/en/security-advisory/qsa-26-10nvd

News mentions

2

QNAP QTS: Critical Command Injection and XSS Flaws Disclosed in Batch
Vypr Intelligence · Jun 10, 2026
QNAP QuTS hero: 12 Vulnerabilities Disclosed, Including Command Injection and XSS
Vypr Intelligence · Jun 10, 2026