QNAP Patch Party: 7 Zero-Days Crushed, Hackers Foiled at Pwn2Own 2025!

QNAP has patched seven zero-day vulnerabilities after security researchers had a field day at Pwn2Own Ireland 2025. The flaws affected QNAP’s QTS, QuTS hero, and apps like Hyper Data Protector. To keep hackers at bay, update your software and change passwords faster than you can say “zero-day vulnerabilities”!

3P
Published: November 7, 2025 6:28 pmAdded: November 7, 2025 at 10:52 amAssembled by: The Editor
Pro Dashboard

Hot Take:

QNAP might just be the overachiever in the class of network-attached storage devices, but they’re also the kid who keeps getting caught passing notes during tests. They’re quick on their feet with fixing those pesky zero-days, though. Every time security researchers find a hole, QNAP is there with a patch and a wink, like a tech-savvy knight in shining armor. If only they could stop the flaws from existing in the first place, they’d truly be the valedictorian of secure storage!

Key Points:

– QNAP patched seven zero-day vulnerabilities identified at the Pwn2Own Ireland 2025 competition.
– The vulnerabilities affected QTS, QuTS hero OS, Hyper Data Protector, Malware Remover, and HBS 3 Hybrid Backup Sync software.
– Security bugs were demonstrated by teams like Summoning Team, DEVCORE, and Team DDOS.
– Updates are available for multiple software versions, with specific instructions for applying them.
– QNAP also patched a critical SQL injection vulnerability in QuMagie 2.7.0.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?