CVE-2025-58469

Summary

A cross-site request forgery (CSRF) vulnerability has been reported to affect QuLog Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities.

We have already fixed the vulnerability in the following version: QuLog Center 1.8.2.927 ( 2025/09/17 ) and later

Affected Software

VendorProductVersion RangeStatus
QNAP Systems Inc.QuLog Center1.8.x.x < 1.8.2.927 ( 2025/09/17 )affected

Weaknesses

  • CWE-352: CWE-352

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References