QNAP Qvpn Security Vulnerabilities in 2026

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in QNAP Qvpn.

By the Year

In 2026 there have been 1 vulnerability in QNAP Qvpn. Qvpn did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2026 as compared to last year.

Year	Vulnerabilities	Average Score
2026	1	0.00
2025	0	0.00
2024	0	0.00
2023	2	4.40

It may take a day or so for new Qvpn vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent QNAP Qvpn Security Vulnerabilities

Path Traversal in Qfinder Pro Mac 7.13+, Qsync 5.1.5+, QVPN 2.2.8+ on macOS
CVE-2025-53594 - January 02, 2026

A path traversal vulnerability has been reported to affect several product versions. If a local attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following versions: Qfinder Pro Mac 7.13.0 and later Qsync for Mac 5.1.5 and later QVPN Device Client for Mac 2.2.8 and later

Directory traversal

Cleartext Transmission in QVPN Device Client <2.2.0.0823 (CVE-2023-23371)
CVE-2023-23371 4.4 - Medium - October 06, 2023

A cleartext transmission of sensitive information vulnerability has been reported to affect QVPN Device Client. If exploited, the vulnerability could allow local authenticated administrators to read sensitive data via unspecified vectors. We have already fixed the vulnerability in the following version: QVPN Windows 2.2.0.0823 and later

Cleartext Transmission of Sensitive Information

Insufficient Credentials in QVPN Windows 2.1.0.0518 Local Admin Exploit
CVE-2023-23370 4.4 - Medium - October 06, 2023

An insufficiently protected credentials vulnerability has been reported to affect QVPN Device Client. If exploited, the vulnerability could allow local authenticated administrators to gain access to user accounts and access sensitive data used by the user account via unspecified vectors. We have already fixed the vulnerability in the following version: QVPN Windows 2.1.0.0518 and later

Insufficiently Protected Credentials

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for QNAP Qvpn or by QNAP? Click the Watch button to subscribe.

QNAP
Vendor

QNAP Qvpn
Product

QNAP Qvpn

Don't miss out!

By the Year

Recent QNAP Qvpn Security Vulnerabilities

Path Traversal in Qfinder Pro Mac 7.13+, Qsync 5.1.5+, QVPN 2.2.8+ on macOS CVE-2025-53594 - January 02, 2026

Cleartext Transmission in QVPN Device Client <2.2.0.0823 (CVE-2023-23371) CVE-2023-23371 4.4 - Medium - October 06, 2023

Insufficient Credentials in QVPN Windows 2.1.0.0518 Local Admin Exploit CVE-2023-23370 4.4 - Medium - October 06, 2023