Description
A weak authentication vulnerability has been reported to affect QHora. If an attacker gains local network access, they can then exploit the vulnerability to gain sensitive information.

We have already fixed the vulnerability in the following version:
QuRouter 2.6.2.007 and later
Published: 2026-03-20
Score: 4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Information Disclosure via Weak Local Authentication
Action: Immediate Patch
AI Analysis

Impact

A weak authentication vulnerability in QNAP QuRouter allows an attacker who has local network access to obtain sensitive information from the device. The flaw is categorized as CWE-1390, indicating improper handling of authentication credentials that compromises confidentiality. While it does not provide code execution or denial of service capabilities, the exposure of sensitive data can facilitate further compromise of the network or device.

Affected Systems

The vulnerability affects QNAP Systems Inc.’s QuRouter product. Affected builds include QuRouter 2.6.0.239, 2.6.0.688, and 2.6.1.028. These versions are listed in the Common Platform Enumeration strings provided.

Risk and Exploitability

The CVSS score of 4 denotes moderate severity, and the EPSS score of less than 1% suggests that exploitation likelihood is low. The flaw has not been documented in the CISA Known Exploited Vulnerabilities catalog. According to the description, the attacker must first reach the device over the local network; no remote exploit is mentioned, so the attack vector is inferred to be local. Because the vendor has released a fix in version 2.6.2.007, devices still running earlier builds remain vulnerable until they apply the update.

Generated by OpenCVE AI on April 14, 2026 at 15:31 UTC.

Remediation

Vendor Solution

We have already fixed the vulnerability in the following version: QuRouter 2.6.2.007 and later

OpenCVE Recommended Actions

  • Update QuRouter firmware to version 2.6.2.007 or later as provided by QNAP.
  • If an immediate upgrade is not possible, restrict local network segments that have direct connectivity to the device and enforce strict network segmentation.
  • Verify that strong, unique passwords or certificates are in use and that default credentials have been changed.

Generated by OpenCVE AI on April 14, 2026 at 15:31 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 14 Apr 2026 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Qnap
Qnap qurouter
CPEs cpe:2.3:o:qnap:qurouter:2.6.0.239:build_20250625:*:*:*:*:*:*
cpe:2.3:o:qnap:qurouter:2.6.0.688:build_20250818:*:*:*:*:*:*
cpe:2.3:o:qnap:qurouter:2.6.1.028:build_20251001:*:*:*:*:*:*
Vendors & Products Qnap
Qnap qurouter
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

Wed, 25 Mar 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 23 Mar 2026 10:00:00 +0000

Type Values Removed Values Added
First Time appeared Qnap Systems
Qnap Systems qurouter
Vendors & Products Qnap Systems
Qnap Systems qurouter

Fri, 20 Mar 2026 16:30:00 +0000

Type Values Removed Values Added
Description A weak authentication vulnerability has been reported to affect QHora. If an attacker gains local network access, they can then exploit the vulnerability to gain sensitive information. We have already fixed the vulnerability in the following version: QuRouter 2.6.2.007 and later
Title QuRouter
Weaknesses CWE-1390
References
Metrics cvssV4_0

{'score': 4, 'vector': 'CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U'}

Subscriptions

Qnap Qurouter
Qnap Systems Qurouter
cve-icon MITRE

Status: PUBLISHED

Assigner: qnap

Published:

Updated: 2026-03-25T14:01:52.002Z

Reserved: 2025-10-24T02:43:45.372Z

Link: CVE-2025-62844

cve-icon Vulnrichment

Updated: 2026-03-25T14:01:48.836Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-20T17:16:42.387

Modified: 2026-04-14T14:24:28.777

Link: CVE-2025-62844

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-14T16:43:50Z

Weaknesses