CVE-2025-62858
A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to m...
Affects 0 products across 1 vendor.
Buffer overflow corrupting the program stack, typically overwriting the return address for code execution.
A buffer overflow vulnerability in multiple QNAP QTS and QuTS hero operating system versions allows a remote attacker who has obtained administrator credentials to manipulate memory or crash running processes. While requiring prior admin access, exploitation can lead to process disruption, data corruption, or potential code execution on QNAP NAS devices. In OT environments where QNAP NAS appliances are used for historian data storage, backup, or file sharing, successful exploitation could disrupt data availability and integrity critical to operational continuity.
Is this CVE in your environment?
BreachSpider monitors your ICS/OT environment for vulnerabilities like this one. No agents or network access required. Free to start.
Check My Environment →What is CVE-2025-62858?
Is CVE-2025-62858 actively exploited?
How do I remediate CVE-2025-62858?
What systems are affected by CVE-2025-62858?
| CVE ID | CVE-2025-62858 |
|---|---|
| Published | 2026-06-09 |
| Last Modified | 2026-06-09 |
| ICS Relevance | 70% |
| Weakness (CWE) | |
| Source | NVD |
A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following versions: QTS 5.2.9.3410 build 20260214 and later QuTS hero h5.2.9.3410 build 20260214 and later QuTS hero h5.3.4.3500 build 20260520 and later QuTS hero h6.0.0.3397 build 20260206 and later
Source: NIST NVD / MITRE CVE Database
| Vendor | Product | Fixed Version |
|---|---|---|
| Qnap | — | — |
Fixed Version: QTS 5.2.9.3410 build 20260214; QuTS hero h5.2.9.3410 build 20260214; QuTS hero h5.3.4.3500 build 20260520; QuTS hero h6.0.0.3397 build 20260206
Patches address a post-authentication buffer overflow condition in multiple QNAP NAS operating system versions by remediating unsafe memory handling in one or more administrative service components, preventing memory corruption or process crashes triggered by a malicious administrator-level user.
View Vendor Advisory →| CISA KEV | Not in KEV catalog |
|---|---|
| Public Exploit | Not confirmed |
| PoC Code | Not confirmed |
Deploy rules at perimeter firewall and internal network TAPs or inline IPS positioned between the OT/management network and QNAP NAS devices. Block all inbound administrative web interface access (ports 80, 443, 8080) originating from untrusted network segments. Whitelist only authorized administrator source IPs for management plane access. Alert on abnormally large HTTP POST bodies directed at QNAP CGI endpoints as a behavioral anomaly indicator.
No reliable network detection signature exists for this vulnerability class — apply the compensating controls above and the vendor patch. SAGE only publishes a network rule when a concrete on-the-wire signature can be grounded in the advisory.
Virtual patch generated by CITED Relevance SAGE. Validate in isolated environment before production deployment. Compensating control only - does not replace vendor patch.
ICS/OT Vulnerability Intelligence for Your Environment
BreachSpider monitors 353,228 CVEs across ICS/OT vendors. SAGE-enriched alerts with virtual patches, NERC-CIP mapping, and PSIRT contacts delivered to your SIEM in minutes.
Join free →