Hyper Data Protector < 2.3.1.455 Hard-Coded Password Vulnerability
CVE-2025-59388 Published on March 12, 2026

Hyper Data Protector
A use of hard-coded password vulnerability has been reported to affect Hyper Data Protector. The remote attackers can then exploit the vulnerability to gain unauthorized access. We have already fixed the vulnerability in the following version: Hyper Data Protector 2.3.1.455 and later

NVD

Weakness Type

Use of Hard-coded Password

The software contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components.

Affected Versions

QNAP Systems Inc. Hyper Data Protector:

Version 2.3.x and below 2.3.1.455 is affected.

Exploit Probability

EPSS

0.13%

Percentile

32.37%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Hyper Data Protector < 2.3.1.455 Hard-Coded Password VulnerabilityCVE-2025-59388 Published on March 12, 2026

Weakness Type

Use of Hard-coded Password

Affected Versions

Exploit Probability

Hyper Data Protector < 2.3.1.455 Hard-Coded Password Vulnerability
CVE-2025-59388 Published on March 12, 2026