Qnap QTS and QuTS hero Improper Certificate Validation (CVE-2024-48865)

Version 1.2 Feb 24, 2026, 12:45 PM CVSS metrics ("CVSSv2 score" set to 6.8) CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:A/AC:H/Au:N/C:C/I:C/A:C") CVSS metrics ("Cvssv4 score" set to 7.3) CVSS metrics ("Cvssv4 threat vector" set to "CVSS:4.0/E:U") CVSS metrics ("Cvssv4 vector" set to "CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H") CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C") CVSSv2 severity (based on CVE-2024-48865, severity decreased from "High" to "Medium") Exploit attributes ("Exploit available" set to "False") Plugin Feed: 202602241245
Version 1.1 Dec 11, 2025, 12:59 PM New Plugin Feed: 202512111259

* Changelogs are generally available for changes made after Nov 1, 2022