Is there a patch available for EUVD-2025-210098?

Yes, a patch is available for EUVD-2025-210098. Update the affected software to the latest version immediately.

License Center EUVD-2025-210098

Q: What is the CVSS score of EUVD-2025-210098?

EUVD-2025-210098 has a CVSS 4.0 base score of 6.9 (Medium). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

| CVE-2025-62851 MEDIUM

Path Traversal (CWE-22)

2026-06-10 qnap

GHSA-6vjj-xxg4-5gjg

Path Traversal License Center

6.9

CVSS 4.0 · Vendor: qnap

Severity by source

Vendor (qnap) PRIMARY

6.9 MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from Vendor (qnap) · only source for this CVE.

CVSS VectorVendor: qnap

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Lifecycle Timeline

Analysis Generated

Jun 10, 2026 - 06:27 vuln.today

Patch available

Jun 10, 2026 - 05:01 EUVD

CVSS changed

Jun 10, 2026 - 04:22 NVD

6.9 (MEDIUM)

CVE Published

Jun 10, 2026 - 03:02 nvd

UNKNOWN (no severity yet)

DescriptionCVE.org

A path traversal vulnerability has been reported to affect License Center. If a local attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data.

We have already fixed the vulnerability in the following version: License Center 1.9.56 and later

AnalysisAI

Path traversal in QNAP License Center (versions 1.9.0 through 1.9.55) permits a high-privileged attacker with an administrator account to read arbitrary files or system data outside the intended directory scope. The CVSS 4.0 vector (AV:N/PR:H) indicates network-reachable exploitation contingent on first obtaining administrative credentials. No public exploit code or active exploitation has been identified at time of analysis; a vendor-released patch is available in version 1.9.56.

Technical ContextAI

The vulnerability is classified as CWE-22 (Improper Limitation of a Pathname to a Restricted Directory), commonly known as path traversal. By supplying directory traversal sequences (e.g., '../') in file-path parameters handled by License Center, an attacker can escape the intended filesystem boundary and access files the application should not be able to read. License Center is a QNAP NAS application responsible for managing product licenses, running on QNAP Systems network-attached storage devices (CPE: cpe:2.3:a:qnap_systems_inc.:license_center:*:*:*:*:*:*:*:*). The CVSS 4.0 vector shows AV:N (network-reachable interface), AC:L (no special conditions), and VC:H (full confidentiality loss to the vulnerable component), with no integrity or availability impact, consistent with a read-only file disclosure class.

RemediationAI

Upgrade to QNAP License Center 1.9.56 or later, as confirmed by the vendor in advisory QSA-26-28 (https://www.qnap.com/en/security-advisory/qsa-26-28). Updates are typically applied via the QNAP App Center on the affected NAS device. As a compensating control while patching, restrict administrative access to License Center by limiting which accounts hold NAS administrator privileges and enabling multi-factor authentication for administrative login - reducing the likelihood that an attacker can acquire the high-privileged account required for exploitation. Blocking external network access to the NAS management interface (typically port 8080/8443) at the perimeter firewall further reduces exposure, though it does not eliminate risk from internal or already-authenticated attackers. No meaningful workaround exists that eliminates the traversal flaw itself without patching.

EUVD-2025-210098 vulnerability details – vuln.today

Back