Description
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack.

We have already fixed the vulnerability in the following versions:
QTS 5.2.9.3492 build 20260507 and later
QuTS hero h5.2.9.3499 build 20260514 and later
QuTS hero h5.3.4.3500 build 20260520 and later
QuTS hero h6.0.0.3459 build 20260409 and later
Published: 2026-06-10
Score: 5.1 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A null pointer dereference can be triggered by a remote attacker who already has administrator credentials, leading to a denial-of-service that freezes the affected system. The flaw requires an authenticated session and impacts the availability of the QNAP operating system.

Affected Systems

QNAP Systems Inc. QTS and QuTS hero devices are affected. All builds before QTS 5.2.9.3492 build 20260507, QuTS hero h5.2.9.3499 build 20260514, QuTS hero h5.3.4.3500 build 20260520, and QuTS hero h6.0.0.3459 build 20260409 are vulnerable.

Risk and Exploitability

The CVSS score of 5.1 indicates moderate severity. EPSS is unavailable, and the vulnerability is not listed in CISA KEV, suggesting no widespread exploitation yet, but it remains a valid risk. The attack path requires the attacker to obtain or compromise an administrator account; given that the attacker can then send a request that dereferences a null pointer, the impact is a denial of service. The official fix includes updated builds listed above; deploying them mitigates the threat.

Generated by OpenCVE AI on June 10, 2026 at 04:22 UTC.

Remediation

Vendor Solution

We have already fixed the vulnerability in the following versions: QTS 5.2.9.3492 build 20260507 and later QuTS hero h5.2.9.3499 build 20260514 and later QuTS hero h5.3.4.3500 build 20260520 and later QuTS hero h6.0.0.3459 build 20260409 and later

OpenCVE Recommended Actions

  • Upgrade QTS to version 5.2.9.3492 build 20260507 or later, or upgrade QuTS hero to h5.2.9.3499 build 20260514 or newer versions h5.3.4.3500 build 20260520 or h6.0.0.3459 build 20260409 and later.
  • Enforce strong authentication controls and reduce the number of users with administrator privileges on all QTS and QuTS hero devices.
  • Enable remote management only from trusted networks and monitor system logs for unexpected requests that could indicate attempts to exploit the vulnerability.

Generated by OpenCVE AI on June 10, 2026 at 04:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 10 Jun 2026 04:45:00 +0000

Type Values Removed Values Added
First Time appeared Qnap Systems Inc.
Qnap Systems Inc. qts
Qnap Systems Inc. quts Hero
Vendors & Products Qnap Systems Inc.
Qnap Systems Inc. qts
Qnap Systems Inc. quts Hero

Wed, 10 Jun 2026 03:45:00 +0000

Type Values Removed Values Added
Description A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the following versions: QTS 5.2.9.3492 build 20260507 and later QuTS hero h5.2.9.3499 build 20260514 and later QuTS hero h5.3.4.3500 build 20260520 and later QuTS hero h6.0.0.3459 build 20260409 and later
Title QTS, QuTS hero
Weaknesses CWE-476
References
Metrics cvssV4_0

{'score': 5.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N'}

Subscriptions

Qnap Systems Inc. Qts Quts Hero
cve-icon MITRE

Status: PUBLISHED

Assigner: qnap

Published:

Updated: 2026-06-10T03:08:55.836Z

Reserved: 2026-01-26T06:41:35.897Z

Link: CVE-2026-24716

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-10T04:17:16.737

Modified: 2026-06-10T04:17:16.737

Link: CVE-2026-24716

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-10T04:30:06Z

Weaknesses