Home / Manufacturers / QNAP

Manufacturer page

QNAP firmware updates — official sources

QNAP advisories are a strong NAS input because they clearly publish affected builds and fixed releases.

Vendor security update2026-03-21

QSA-26-12 Multiple Vulnerabilities in QuRouter (PWN2OWN 2025)

QNAP published an official QuRouter security advisory for QHora devices after PWN2OWN 2025, listing four vulnerabilities and a fixed router firmware baseline of QuRouter 2.6.3.009 or later.

AffectedQuRouter 2.6.x
Fixed version(s)QuRouter 2.6.3.009 and later
Official advisory / notes ↗
mixed2026-01-03

QSA-25-50 Multiple Vulnerabilities in QTS and QuTS hero

QNAP published a broad QTS and QuTS hero advisory covering null-pointer dereference, buffer overflow, out-of-bounds read, format string, and resource exhaustion issues across current NAS operating system branches.

AffectedQTS 5.2.x, QuTS hero h5.2.x, QuTS hero h5.3.x
Fixed version(s)QTS 5.2.7.3256 build 20250913 and later, QuTS hero h5.2.7.3256 build 20250913 and later, QuTS hero h5.3.1.3250 build 20250912 and later
Official advisory / notes ↗
mixed2025-11-08

QSA-25-45 Multiple Vulnerabilities in QTS and QuTS hero (PWN2OWN 2025)

QNAP disclosed PWN2OWN-linked QTS and QuTS hero vulnerabilities including command injection, SQL injection, null-pointer dereference, and authentication bypass, with fixed builds for both 5.2 and 5.3-era NAS software tracks.

AffectedQTS 5.2.x, QuTS hero h5.2.x, QuTS hero h5.3.x
Fixed version(s)QTS 5.2.7.3297 build 20251024 and later, QuTS hero h5.2.7.3297 build 20251024 and later, QuTS hero h5.3.1.3292 build 20251024 and later
Official advisory / notes ↗
mixed2025-08-29

QSA-25-21 Multiple Vulnerabilities in QTS and QuTS hero

QNAP published a large QTS/QuTS hero advisory covering DoS, command injection, path traversal, buffer overflow, and out-of-bounds write issues.

AffectedQTS 5.2.x, QuTS hero h5.2.x
Fixed version(s)QTS 5.2.5.3145 build 20250526 and later, QuTS hero h5.2.5.3138 build 20250519 and later
Official advisory / notes ↗
not stated2025-03-08

QSA-25-03 Vulnerability in Legacy QTS and QuTS hero

QNAP warned that legacy QTS and QuTS hero builds exposed sensitive information and recommended upgrading to 5.2-era fixed releases.

AffectedQTS 5.1.x, 5.0.x, QuTS hero h5.1.x, h5.0.x
Fixed version(s)QTS 5.2.0.2851 build 20240808 and later, QuTS hero h5.2.0.2851 build 20240808 and later
Official advisory / notes ↗
not stated2025-03-08

QSA-24-52 Vulnerability in QTS and QuTS hero

QNAP disclosed an out-of-bounds write vulnerability affecting QTS 5.1.x and QuTS hero h5.1.x, fixed in 20241120 builds and later.

AffectedQTS 5.1.x, QuTS hero h5.1.x
Fixed version(s)QTS 5.1.9.2954 build 20241120 and later, QuTS hero h5.1.9.2954 build 20241120 and later
Official advisory / notes ↗