Hyper Data Protector

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-59388 CRITICAL Act Now

QNAP Hyper Data Protector before 2.3.1.455 contains hard-coded credentials that allow remote unauthenticated attackers to gain unauthorized access to backup management functions, potentially compromising all backed-up data across the organization.

Authentication Bypass Hyper Data Protector
NVD VulDB
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-59389 CRITICAL Act Now

QNAP Hyper Data Protector before 2.2.4.1 has an SQL injection vulnerability that allows remote attackers to execute unauthorized commands on the backup database. Combined with CVE-2025-59388 (hardcoded credentials), this creates a critical attack chain.

SQLi Hyper Data Protector
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-59388
EPSS 0% CVSS 9.8
CRITICAL Act Now

QNAP Hyper Data Protector before 2.3.1.455 contains hard-coded credentials that allow remote unauthenticated attackers to gain unauthorized access to backup management functions, potentially compromising all backed-up data across the organization.

Authentication Bypass Hyper Data Protector
NVD VulDB
CVE-2025-59389
EPSS 0% CVSS 9.8
CRITICAL Act Now

QNAP Hyper Data Protector before 2.2.4.1 has an SQL injection vulnerability that allows remote attackers to execute unauthorized commands on the backup database. Combined with CVE-2025-59388 (hardcoded credentials), this creates a critical attack chain.

SQLi Hyper Data Protector
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy