A vulnerability has been identified in QNAP NAS devices that could allow a remote attacker to elevate privileges on the targeted system. Users of QTS 4.3.x are advised to apply the fixes provided by QNAP as soon as possible.
QNAP NAS Elevation of Privilege Vulnerability Release Date: 30 Jan 2026 3332 Views RISK: Medium Risk Medium Risk TYPE: Servers - Other Servers A vulnerability was identified in QNAP NAS. A remote attacker can exploit this vulnerability to trigger elevation of privilege on the targeted system. Impact Elevation of Privilege System / Technologies affected QTS 4.3.x Solutions Before installation of the software, please visit the vendor web-site for more details. Apply fixes issued by the vendor: https://www.qnap.com/en/security-advisory/qsa-25-56 Vulnerability Identifier CVE-2025-66276 Source QNAP Related Link https://www.qnap.com/en/security-advisory/qsa-25-56 Related Tags QNAP Elevation of Privilege Share with