Security Advisory

CVE-2025-54168

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-07 15:12:10
Last updated 2025-11-07 15:57:21
Assigner qnap
State PUBLISHED

Description

A cross-site scripting (XSS) vulnerability has been reported to affect QuLog Center. If a remote attacker gains an administrator account, they can then exploit the vulnerability to bypass security mechanisms or read application data. We have already fixed the vulnerability in the following version: QuLog Center 1.8.2.923 ( 2025/08/27 ) and later