CVE-2025-66276

N/A

QuTS hero is not affected. We have already fixed the vulnerability in the following version: QTS 5.2.7.3256 build 20250913 and later

Affects 0 products across 1 vendor.

CVSS v49.2
EPSS0.3%
Percentile21th
PatchUnknown
◆ SAGE Intelligence — CITED Relevance Research Team

CVE-2025-66276 affects QNAP QTS network-attached storage firmware versions prior to 5.2.7.3256 build 20250913; QuTS hero is confirmed unaffected. The specific vulnerability type and attack vector have not been publicly disclosed, limiting precise impact assessment, but QNAP NAS devices used as data historians, file shares, or backup targets in OT environments could expose operational data or serve as a pivot point if exploited. Severity is assessed as moderate concern in ICS/OT contexts due to limited disclosure, though the existence of a patch indicates a genuine security flaw warranting prompt remediation.

Is this CVE in your environment?

BreachSpider monitors your ICS/OT environment for vulnerabilities like this one. No agents or network access required. Free to start.

Check My Environment →
Frequently Asked Questions
What is CVE-2025-66276?
CVE-2025-66276 affects QNAP QTS network-attached storage firmware versions prior to 5.2.7.3256 build 20250913; QuTS hero is confirmed unaffected. The specific vulnerability type and attack vector have not been publicly disclosed, limiting precise impact assessment, but QNAP NAS devices used as data historians, file shares, or backup targets in OT environments could expose operational data or serve as a pivot point if exploited. Severity is assessed as moderate concern in ICS/OT contexts due to l
Is CVE-2025-66276 actively exploited?
No confirmed active exploitation of CVE-2025-66276 as of 2026-06-24.
How do I remediate CVE-2025-66276?
Update to QTS 5.2.7.3256 build 20250913 or later. QNAP has resolved an undisclosed vulnerability in QTS. QuTS hero is not affected. Users should update to QTS 5.2.7.3256 build 20250913 or later to remediate the issue. Advisory: https://www.qnap.com/en/security-advisory/CVE-2025-66276
What systems are affected by CVE-2025-66276?
CVE-2025-66276 affects: Qnap.
Vulnerability Details
CVE IDCVE-2025-66276
Published2026-06-10
Last Modified2026-06-10
ICS Relevance55%
SourceNVD
Official Description

QuTS hero is not affected. We have already fixed the vulnerability in the following version: QTS 5.2.7.3256 build 20250913 and later

Source: NIST NVD / MITRE CVE Database

Affected Products
VendorProductFixed Version
Qnap —
Remediation

Fixed Version: QTS 5.2.7.3256 build 20250913

QNAP has resolved an undisclosed vulnerability in QTS. QuTS hero is not affected. Users should update to QTS 5.2.7.3256 build 20250913 or later to remediate the issue.

View Vendor Advisory →
Threat Intelligence
● Threat Intelligence Validated: July 2026 | Threat Age: 32 Days
CISA KEVNot in KEV catalog
Public ExploitNot confirmed
PoC CodeNot confirmed
● Virtual Patch — CITED Relevance SAGE Engine LOW CONFIDENCE

Block all inbound connections to QNAP NAS management ports (80, 443, 8080) from untrusted network segments at the perimeter firewall and OT DMZ boundary. Deploy rules on IDS/IPS sensors positioned between IT and OT network segments to alert on unusual access patterns to NAS web interfaces. Restrict NAS access to a dedicated management VLAN with explicit allowlisting of authorized administrator source IPs.

No reliable network detection signature exists for this vulnerability class — apply the compensating controls above and the vendor patch. SAGE only publishes a network rule when a concrete on-the-wire signature can be grounded in the advisory.

Virtual patch generated by CITED Relevance SAGE. Validate in isolated environment before production deployment. Compensating control only - does not replace vendor patch.

Related CVEs affecting Qnap
CVE-2017-7876 10.0 This command injection vulnerability in QTS allows attackers to run arbitrary... CVE-2024-32766 10.0 An OS command injection vulnerability has been reported to affect several QNA... CVE-2024-32764 9.9 A missing authentication for critical function vulnerability has been reporte... CVE-2017-17033 9.8 A buffer overflow vulnerability in password function in QNAP QTS version 4.2.... CVE-2017-17028 9.8 A buffer overflow vulnerability in external device function in QNAP QTS versi...
View all Qnap CVEs →

ICS/OT Vulnerability Intelligence for Your Environment

BreachSpider monitors 353,228 CVEs across ICS/OT vendors. SAGE-enriched alerts with virtual patches, NERC-CIP mapping, and PSIRT contacts delivered to your SIEM in minutes.

Join free →