CVE-2025-58469HIGH 8.8EPSS p10.9%

CVE-2025-58469CVE-2025-58469

Description

A cross-site request forgery (CSRF) vulnerability has been reported to affect QuLog Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities. We have already fixed the vulnerability in the following version: QuLog Center 1.8.2.927 ( 2025/09/17 ) and later

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS0.21% probability of exploitation · percentile 10.9% · 2026-06-18T12:00:27Z
Published2025-11-07
Last modified2025-11-14

Underlying weaknesses· 1

CWE-352

References

  1. https://www.qnap.com/en/security-advisory/qsa-25-42

1

TypeTargetConfidenceTier
WeaknessCross-Site Request Forgery (CSRF)cwe-3520%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-58468
CVE
CVE-2025-53595
CVE
CVE-2025-54153
CVE
CVE-2025-28866
CVE
CVE-2025-30269
CVE
CVE-2025-29894
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.