Notification Center
CVE-2025-58468

5.1MEDIUM

Key Information:

Vendor: QNAP
Status: Notification Center
Vendor: CVE Published:; 10 June 2026

What is CVE-2025-58468?

A cross-site request forgery (CSRF) vulnerability has been reported to affect Notification Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities.

We have already fixed the vulnerability in the following version: Notification Center 1.10.0.3291 and later

Affected Version(s)

Notification Center 1.10.0 < 1.10.0.3291

References

https://www.qnap.com/en/security-advisory/qsa-26-13

CVSS V4

Score:

5.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 10, 2026
Vulnerability Reserved
Sep 3, 2025

Credit

Tim Coen

CVE-2025-58468 Data

JSON

QNAP

What is CVE-2025-58468?

Affected Version(s)

References

CVSS V4

Timeline

Credit