Every CVE whose affected-product data names Qnap Qumagie, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2025-52425 — CVSS 9.8 (critical): An SQL injection vulnerability has been reported to affect QuMagie. A remote attacker can exploit the vulnerability to execute unauthorized…
CVE-2026-44083 — CVSS 9.8 (critical): An authorization bypass through user-controlled key vulnerability has been reported to affect QuMagie. The remote attackers can then…
CVE-2023-39295 — CVSS 8.8 (high): An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users…
CVE-2024-38642 — CVSS 7.8 (high): An improper certificate validation vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow local…
CVE-2026-26237 — CVSS 7.5 (high): A missing authorization vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the vulnerability to…
CVE-2025-58464 — CVSS 7.5 (high): A relative path traversal vulnerability has been reported to affect QuMagie. If a remote attacker, they can then exploit the vulnerability…
CVE-2026-26236 — CVSS 7.5 (high): A missing authorization vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the vulnerability to…
CVE-2023-41284 — CVSS 7.4 (high): A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to…
CVE-2023-47560 — CVSS 7.4 (high): An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users…
CVE-2023-41285 — CVSS 7.4 (high): A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to…
CVE-2025-62857 — CVSS 6.1 (medium): A cross-site scripting (XSS) vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the vulnerability to…
CVE-2023-47559 — CVSS 5.5 (medium): A cross-site scripting (XSS) vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated…
CVE-2023-47219 — CVSS 3.5 (low): A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to…