CVE-2026-22898

UNKNOWN 0.0

QVR Pro

CVSS Score

0.0

EPSS Score

0.4%

EPSS Percentile

63th

A missing authentication for critical function vulnerability has been reported to affect QVR Pro. The remote attackers can then exploit the vulnerability to gain access to the system. We have already fixed the vulnerability in the following version: QVR Pro 2.7.4.14 and later

CWE	CWE-306
Vendor	qnap systems inc.
Product	qvr pro
Published	Mar 20, 2026
Last Updated	Mar 27, 2026

Stay Ahead of the Next One

Get instant alerts for qnap systems inc. qvr pro

Be the first to know when new unknown vulnerabilities affecting qnap systems inc. qvr pro are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

QNAP Systems Inc. / QVR Pro

2.7.x < 2.7.4.14

References

NVD ↗ CVE.org ↗ EPSS Data ↗

qnap.com: https://www.qnap.com/en/security-advisory/qsa-26-07

Credits

FuzzingLabs